VDB
DEBIAN-CVE-2025-38167
DEBIAN-CVE-2025-38167
PUBLISHED
CVSS 5.5 MEDIUM
In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: handle hdr_first_de() return value The hdr_first_de() function returns a pointer to a struct NTFS_DE. This pointer may be NULL. To handle the NULL error effectively, it is important to implement an error handler. This will help manage potential errors consistently. Additionally, error handling for the return value already exists at other points where this function is called. Found by Linux Verification Center (linuxtesting.org) with SVACE.
Risk Scores
CVSS v3.1
5.5
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:14 | linux | 0, 0 |
| Debian:11 | linux-6.1 | *, 6.1.147-1, 6.1.148-1 |
| Debian:13 | linux | 0, 0 |
| Debian:12 | linux | 6.1.140-1, 6.1.90-1, * |
Timeline
- Jul 3, 2025 CVE Published
- Apr 28, 2026 CVE Updated