{"vulnerability": "cve-2025-2204", "sightings": [{"uuid": "fac56074-5944-4047-8f68-3db2c227e6b1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2025-22041", "type": "seen", "source": "https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0316/", "content": "", "creation_timestamp": "2026-03-19T00:00:00.000000Z"}, {"uuid": "8f2470fa-b82a-4a1b-88fa-f65b63016e20", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2025-22040", "type": "seen", "source": "https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0316/", "content": "", "creation_timestamp": "2026-03-19T00:00:00.000000Z"}, {"uuid": "65134852-c403-4d8a-8956-b5829641e906", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2025-22042", "type": "seen", "source": "https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0316/", "content": "", "creation_timestamp": "2026-03-19T00:00:00.000000Z"}, {"uuid": "fb6e67dc-73ee-42fd-94ca-987ec5ace1b0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2025-22043", "type": "seen", "source": "https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0316/", "content": "", "creation_timestamp": "2026-03-19T00:00:00.000000Z"}, {"uuid": "06212d69-f274-491e-8442-55cb67d90fb1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22041", "type": "published-proof-of-concept", "source": "Telegram/PZyAgFdjcKEvAOmTbHs0GHmYTdWHIFdf5cfzSlA2BEGv440", "content": "", "creation_timestamp": "2026-04-02T11:19:52.000000Z"}, {"uuid": "038959fa-75ec-4370-9e34-b62183f5be55", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2204", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3md3w7z47ue2j", "content": "", "creation_timestamp": "2026-01-23T14:33:54.775557Z"}, {"uuid": "a8955e6a-9259-40c9-aef9-cdc8fa7f9118", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22040", "type": "seen", "source": "Telegram/Ig1PoEkLRkLZXw2uOx0iXI5kdj6breIEyUIy1Z-iyA-tgLY", "content": "", "creation_timestamp": "2026-04-02T11:19:48.000000Z"}, {"uuid": "fde76223-d17d-44d1-92da-173ca6862d9e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22043", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/13994", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-22043\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: In the Linux kernel, the following vulnerability has been resolved:\n\nksmbd: add bounds check for durable handle context\n\nAdd missing bounds check for durable handle context.\n\ud83d\udccf Published: 2025-04-16T14:12:04.558Z\n\ud83d\udccf Modified: 2025-04-30T09:33:02.570Z\n\ud83d\udd17 References:\n1. https://git.kernel.org/stable/c/8d4848c45943c9cf5e86142fd7347efa97f497db\n2. https://git.kernel.org/stable/c/29b946714d6aa77de54c71243bba39469ac43ef2\n3. https://git.kernel.org/stable/c/1107b9ed92194603593c51829a3887812ae9e806\n4. https://git.kernel.org/stable/c/f0db3d9d416e332a0d6f045a1509539d3a4cd898\n5. https://git.kernel.org/stable/c/542027e123fc0bfd61dd59e21ae0ee4ef2101b29", "creation_timestamp": "2025-04-30T10:13:29.000000Z"}, {"uuid": "36ac86cf-0993-4992-8c4a-4e489265adc6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22040", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/13997", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-22040\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: In the Linux kernel, the following vulnerability has been resolved:\n\nksmbd: fix session use-after-free in multichannel connection\n\nThere is a race condition between session setup and\nksmbd_sessions_deregister. The session can be freed before the connection\nis added to channel list of session.\nThis patch check reference count of session before freeing it.\n\ud83d\udccf Published: 2025-04-16T14:11:57.601Z\n\ud83d\udccf Modified: 2025-04-30T09:32:58.785Z\n\ud83d\udd17 References:\n1. https://git.kernel.org/stable/c/596407adb9af1ee75fe7c7529607783d31b66e7f\n2. https://git.kernel.org/stable/c/3980770cb1470054e6400fd97668665975726737\n3. https://git.kernel.org/stable/c/9069939d762138e232a6f79e3e1462682ed6a17d\n4. https://git.kernel.org/stable/c/94c281721d4ed2d972232414b91d98a6f5bdb16b\n5. https://git.kernel.org/stable/c/7dfbd4c43eed91dd2548a95236908025707a8dfd\n6. https://git.kernel.org/stable/c/fa4cdb8cbca7d6cb6aa13e4d8d83d1103f6345db", "creation_timestamp": "2025-04-30T10:13:35.000000Z"}, {"uuid": "f01d219c-3225-4533-9fbe-fc5252dc2316", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22041", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/13996", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-22041\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: In the Linux kernel, the following vulnerability has been resolved:\n\nksmbd: fix use-after-free in ksmbd_sessions_deregister()\n\nIn multichannel mode, UAF issue can occur in session_deregister\nwhen the second channel sets up a session through the connection of\nthe first channel. session that is freed through the global session\ntable can be accessed again through ->sessions of connection.\n\ud83d\udccf Published: 2025-04-16T14:11:58.250Z\n\ud83d\udccf Modified: 2025-04-30T09:32:59.880Z\n\ud83d\udd17 References:\n1. https://git.kernel.org/stable/c/f0eb3f575138b816da74697bd506682574742fcd\n2. https://git.kernel.org/stable/c/a8a8ae303a8395cbac270b5b404d85df6ec788f8\n3. https://git.kernel.org/stable/c/ca042cc0e4f9e0d2c8f86dd67e4b22f30a516a9b\n4. https://git.kernel.org/stable/c/8ed0e9d2f410f63525afb8351181eea36c80bcf1\n5. https://git.kernel.org/stable/c/33cc29e221df7a3085ae413e8c26c4e81a151153\n6. https://git.kernel.org/stable/c/15a9605f8d69dc85005b1a00c31a050b8625e1aa", "creation_timestamp": "2025-04-30T10:13:34.000000Z"}, {"uuid": "380e92a3-c521-4e5a-84f1-ca8b182a2cc0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22049", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/13993", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-22049\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: In the Linux kernel, the following vulnerability has been resolved:\n\nLoongArch: Increase ARCH_DMA_MINALIGN up to 16\n\nARCH_DMA_MINALIGN is 1 by default, but some LoongArch-specific devices\n(such as APBDMA) require 16 bytes alignment. When the data buffer length\nis too small, the hardware may make an error writing cacheline. Thus, it\nis dangerous to allocate a small memory buffer for DMA. It's always safe\nto define ARCH_DMA_MINALIGN as L1_CACHE_BYTES but unnecessary (kmalloc()\nneed small memory objects). Therefore, just increase it to 16.\n\ud83d\udccf Published: 2025-04-16T14:12:08.317Z\n\ud83d\udccf Modified: 2025-04-30T09:33:03.646Z\n\ud83d\udd17 References:\n1. https://git.kernel.org/stable/c/f39af67f03b564b763b06e44cb960c10a382d54a\n2. https://git.kernel.org/stable/c/279ec25c2df49fba1cd9488f2ddd045d9cb2112e\n3. https://git.kernel.org/stable/c/1d0def2d1658666ec1f32c9495df60e7411e3c82\n4. https://git.kernel.org/stable/c/bfff341cac7c650e6ca8d10503725992f5564d0f\n5. https://git.kernel.org/stable/c/8b82aea3666f8f2c78f86148d78aea99c46e0f82\n6. https://git.kernel.org/stable/c/4103cfe9dcb88010ae4911d3ff417457d1b6a720", "creation_timestamp": "2025-04-30T10:13:29.000000Z"}, {"uuid": "9249d404-6a99-46cf-938f-98aa27fa66a9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22048", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/14808", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-22048\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: In the Linux kernel, the following vulnerability has been resolved:\n\nLoongArch: BPF: Don't override subprog's return value\n\nThe verifier test `calls: div by 0 in subprog` triggers a panic at the\nld.bu instruction. The ld.bu insn is trying to load byte from memory\naddress returned by the subprog. The subprog actually set the correct\naddress at the a5 register (dedicated register for BPF return values).\nBut at commit 73c359d1d356 (\"LoongArch: BPF: Sign-extend return values\")\nwe also sign extended a5 to the a0 register (return value in LoongArch).\nFor function call insn, we later propagate the a0 register back to a5\nregister. This is right for native calls but wrong for bpf2bpf calls\nwhich expect zero-extended return value in a5 register. So only move a0\nto a5 for native calls (i.e. non-BPF_PSEUDO_CALL).\n\ud83d\udccf Published: 2025-04-16T14:12:07.679Z\n\ud83d\udccf Modified: 2025-05-04T13:06:55.838Z\n\ud83d\udd17 References:\n1. https://git.kernel.org/stable/c/7df2696256a034405d3c5a71b3a4c54725de4404\n2. https://git.kernel.org/stable/c/223d565d8892481684091cfbaf3466f2b0e289d3\n3. https://git.kernel.org/stable/c/780628a780b622759d9e5adc76d15432144da1a3\n4. https://git.kernel.org/stable/c/996e90ab446641553e8e21707b38b9709605e0e0\n5. https://git.kernel.org/stable/c/60f3caff1492e5b8616b9578c4bedb5c0a88ed14", "creation_timestamp": "2025-05-04T13:18:53.000000Z"}, {"uuid": "5ec3acc3-d409-4839-a8c6-ecc1b7cf4d1c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22042", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/13995", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-22042\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: In the Linux kernel, the following vulnerability has been resolved:\n\nksmbd: add bounds check for create lease context\n\nAdd missing bounds check for create lease context.\n\ud83d\udccf Published: 2025-04-16T14:12:03.896Z\n\ud83d\udccf Modified: 2025-04-30T09:33:01.488Z\n\ud83d\udd17 References:\n1. https://git.kernel.org/stable/c/629dd37acc336ad778979361c351e782053ea284\n2. https://git.kernel.org/stable/c/60b7207893a8a06c78441934931a08fdad63f18e\n3. https://git.kernel.org/stable/c/800c482c9ef5910f05e3a713943c67cc6c1d4939\n4. https://git.kernel.org/stable/c/a41cd52f00907a040ca22c73d4805bb79b0d0972\n5. https://git.kernel.org/stable/c/9a1b6ea955e6c7b29939a6d98701202f9d9644ec\n6. https://git.kernel.org/stable/c/bab703ed8472aa9d109c5f8c1863921533363dae", "creation_timestamp": "2025-04-30T10:13:30.000000Z"}]}