{
  "affected": [
    {
      "ranges": [
        {
          "events": [
            {
              "introduced": "47dd67532303803a87f43195e088b3b4bcf0454d"
            },
            {
              "fixed": "b025d81b96bfe8a62b6e3e6ac776608206ccbf6d"
            },
            {
              "fixed": "4cdf1bdd45ac78a088773722f009883af30ad318"
            }
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "type": "GIT"
        }
      ]
    }
  ],
  "database_specific": {
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/38xxx/CVE-2025-38442.json"
  },
  "details": "In the Linux kernel, the following vulnerability has been resolved:\n\nblock: reject bs \u003e ps block devices when THP is disabled\n\nIf THP is disabled and when a block device with logical block size \u003e\npage size is present, the following null ptr deref panic happens during\nboot:\n\n[   [13.2 mK  AOSAN: null-ptr-deref in range [0x0000000000000000-0x0000000000K0 0 0[07]\n[   13.017749] RIP: 0010:create_empty_buffers+0x3b/0x380\n\u003csnip\u003e\n[   13.025448] Call Trace:\n[   13.025692]  \u003cTASK\u003e\n[   13.025895]  block_read_full_folio+0x610/0x780\n[   13.026379]  ? __pfx_blkdev_get_block+0x10/0x10\n[   13.027008]  ? __folio_batch_add_and_move+0x1fa/0x2b0\n[   13.027548]  ? __pfx_blkdev_read_folio+0x10/0x10\n[   13.028080]  filemap_read_folio+0x9b/0x200\n[   13.028526]  ? __pfx_filemap_read_folio+0x10/0x10\n[   13.029030]  ? __filemap_get_folio+0x43/0x620\n[   13.029497]  do_read_cache_folio+0x155/0x3b0\n[   13.029962]  ? __pfx_blkdev_read_folio+0x10/0x10\n[   13.030381]  read_part_sector+0xb7/0x2a0\n[   13.030805]  read_lba+0x174/0x2c0\n\u003csnip\u003e\n[   13.045348]  nvme_scan_ns+0x684/0x850 [nvme_core]\n[   13.045858]  ? __pfx_nvme_scan_ns+0x10/0x10 [nvme_core]\n[   13.046414]  ? _raw_spin_unlock+0x15/0x40\n[   13.046843]  ? __switch_to+0x523/0x10a0\n[   13.047253]  ? kvm_clock_get_cycles+0x14/0x30\n[   13.047742]  ? __pfx_nvme_scan_ns_async+0x10/0x10 [nvme_core]\n[   13.048353]  async_run_entry_fn+0x96/0x4f0\n[   13.048787]  process_one_work+0x667/0x10a0\n[   13.049219]  worker_thread+0x63c/0xf60\n\nAs large folio support depends on THP, only allow bs \u003e ps block devices\nif THP is enabled.",
  "id": "CVE-2025-38442",
  "modified": "2026-04-01T23:08:06.838302223Z",
  "published": "2025-07-25T15:27:26.009Z",
  "references": [
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/4cdf1bdd45ac78a088773722f009883af30ad318"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/b025d81b96bfe8a62b6e3e6ac776608206ccbf6d"
    },
    {
      "type": "ADVISORY",
      "url": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/38xxx/CVE-2025-38442.json"
    },
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-38442"
    },
    {
      "type": "PACKAGE",
      "url": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"
    }
  ],
  "schema_version": "1.7.3",
  "summary": "block: reject bs \u003e ps block devices when THP is disabled"
}