CVE-2025-39867

In the Linux kernel, the following vulnerability has been resolved:

netfilter: nft_set_pipapo: fix null deref for empty set

Blamed commit broke the check for a null scratch map:
  -  if (unlikely(!m || !*raw_cpu_ptr(m->scratch)))
  +  if (unlikely(!raw_cpu_ptr(m->scratch)))

This should have been "if (!*raw_ ...)".
Use the pattern of the avx2 version which is more readable.

This can only be reproduced if avx2 support isn't available.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
UNKNOWN
---
LinuxCNA
---
---
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
Debian logo
Debian Releases
Debian Product
Codename
linux
bullseye
5.10.223-1
not-affected
bookworm
6.1.148-1
not-affected
bullseye (security)
5.10.237-1
fixed
bookworm (security)
6.1.153-1
fixed
trixie
vulnerable
trixie (security)
6.12.48-1
fixed
forky
vulnerable
sid
6.16.8-1
fixed
Vulnerability Media Exposure
References
https://git.kernel.org/stable/c/30c1d25b9870d551be42535067d5481668b5e6f3
https://git.kernel.org/stable/c/44b2be6d5994ddf07ecc86c01d3279bfa13e9ef6
https://git.kernel.org/stable/c/51a321b480d1e753667f6aea497312461563f9fe