216.73.216.170

CVE-2025-38003

· Published 08/06/2025 11:15 · Modified 09/06/2025 12:15

Labels: CVE-2025-38003 2025-06-08416baaa9-dc9f-4396-8d5f-8c081fb06d67CVE-2025-38003

Essential information

Published
08/06/2025 11:15
Modified
09/06/2025 12:15
Author
Creator
CISA KEV
No
CWE

Description

In the Linux kernel, the following vulnerability has been resolved: can: bcm: add missing rcu read protection for procfs content When the procfs content is generated for a bcm_op which is in the process to be removed the procfs output might show unreliable data (UAF). As the removal of bcm_op's is already implemented with rcu handling this patch adds the missing rcu_read_lock() and makes sure the list entries are properly removed under rcu protection.

NVD status

Status
Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
416baaa9-dc9f-4396-8d5f-8c081fb06d67
NVD
View on NVD

Affected products (CPE)

ProductCPE
linux / linux kernel cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

References