Vulnerability-Lookup

CERTFR-2025-AVI-0650

Vulnerability from certfr_avis - Published: 2025-08-01 - Updated: 2025-08-01

De multiples vulnérabilités ont été découvertes dans le noyau Linux d'Ubuntu. Elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur.

Solutions

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
Ubuntu	Ubuntu	Ubuntu 20.04 ESM
Ubuntu	Ubuntu	Ubuntu 24.04 LTS
Ubuntu	Ubuntu	Ubuntu 25.04
Ubuntu	Ubuntu	Ubuntu 18.04 ESM
Ubuntu	Ubuntu	Ubuntu 22.04 LTS

References

Title

Publication Time

CVE-2025-37970 (GCVE-0-2025-37970)

Vulnerability from cvelistv5 – Published: 2025-05-20 16:47 – Updated: 2026-05-11 21:18

Title

iio: imu: st_lsm6dsx: fix possible lockup in st_lsm6dsx_read_fifo

Summary

In the Linux kernel, the following vulnerability has been resolved: iio: imu: st_lsm6dsx: fix possible lockup in st_lsm6dsx_read_fifo Prevent st_lsm6dsx_read_fifo from falling in an infinite loop in case pattern_len is equal to zero and the device FIFO is not empty.

Severity

No CVSS data available.

Assigner

Linux

References

10 references

URL	Tags
https://git.kernel.org/stable/c/f06a1a1954527cc4e…
https://git.kernel.org/stable/c/84e39f628a3a3333a…
https://git.kernel.org/stable/c/f3cf233c946531a92…
https://git.kernel.org/stable/c/6c4a5000618a8c442…
https://git.kernel.org/stable/c/da33c4167b9cc1266…
https://git.kernel.org/stable/c/a1cad8a3bca41dead…
https://git.kernel.org/stable/c/3bb6c02d6fe8347ce…
https://git.kernel.org/stable/c/159ca7f18129834b6…
https://lists.debian.org/debian-lts-announce/2025…
https://lists.debian.org/debian-lts-announce/2025…

Impacted products

2 products

Vendor	Product	Version
Linux	Linux	Affected: 290a6ce11d938be52634b3ce1bbc6b78be4d23c1 , < f06a1a1954527cc4ed086d926c81ff236b2adde9 (git) Affected: 290a6ce11d938be52634b3ce1bbc6b78be4d23c1 , < 84e39f628a3a3333add99076e4d6c8b42b12d3a0 (git) Affected: 290a6ce11d938be52634b3ce1bbc6b78be4d23c1 , < f3cf233c946531a92fe651ff2bd15ebbe60630a7 (git) Affected: 290a6ce11d938be52634b3ce1bbc6b78be4d23c1 , < 6c4a5000618a8c44200d455c92e2f2a4db264717 (git) Affected: 290a6ce11d938be52634b3ce1bbc6b78be4d23c1 , < da33c4167b9cc1266a97215114cb74679f881d0c (git) Affected: 290a6ce11d938be52634b3ce1bbc6b78be4d23c1 , < a1cad8a3bca41dead9980615d35efc7bff1fd534 (git) Affected: 290a6ce11d938be52634b3ce1bbc6b78be4d23c1 , < 3bb6c02d6fe8347ce1785016d135ff539c20043c (git) Affected: 290a6ce11d938be52634b3ce1bbc6b78be4d23c1 , < 159ca7f18129834b6f4c7eae67de48e96c752fc9 (git)
Linux	Linux	Affected: 4.11 Unaffected: 0 , < 4.11 (semver) Unaffected: 5.4.294 , ≤ 5.4.* (semver) Unaffected: 5.10.238 , ≤ 5.10.* (semver) Unaffected: 5.15.183 , ≤ 5.15.* (semver) Unaffected: 6.1.139 , ≤ 6.1.* (semver) Unaffected: 6.6.91 , ≤ 6.6.* (semver) Unaffected: 6.12.29 , ≤ 6.12.* (semver) Unaffected: 6.14.7 , ≤ 6.14.* (semver) Unaffected: 6.15 , ≤ * (original_commit_for_fix)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2025-11-03T19:57:53.930Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "url": "https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html"
          },
          {
            "url": "https://lists.debian.org/debian-lts-announce/2025/08/msg00010.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/iio/imu/st_lsm6dsx/st_lsm6dsx_buffer.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "f06a1a1954527cc4ed086d926c81ff236b2adde9",
              "status": "affected",
              "version": "290a6ce11d938be52634b3ce1bbc6b78be4d23c1",
              "versionType": "git"
            },
            {
              "lessThan": "84e39f628a3a3333add99076e4d6c8b42b12d3a0",
              "status": "affected",
              "version": "290a6ce11d938be52634b3ce1bbc6b78be4d23c1",
              "versionType": "git"
            },
            {
              "lessThan": "f3cf233c946531a92fe651ff2bd15ebbe60630a7",
              "status": "affected",
              "version": "290a6ce11d938be52634b3ce1bbc6b78be4d23c1",
              "versionType": "git"
            },
            {
              "lessThan": "6c4a5000618a8c44200d455c92e2f2a4db264717",
              "status": "affected",
              "version": "290a6ce11d938be52634b3ce1bbc6b78be4d23c1",
              "versionType": "git"
            },
            {
              "lessThan": "da33c4167b9cc1266a97215114cb74679f881d0c",
              "status": "affected",
              "version": "290a6ce11d938be52634b3ce1bbc6b78be4d23c1",
              "versionType": "git"
            },
            {
              "lessThan": "a1cad8a3bca41dead9980615d35efc7bff1fd534",
              "status": "affected",
              "version": "290a6ce11d938be52634b3ce1bbc6b78be4d23c1",
              "versionType": "git"
            },
            {
              "lessThan": "3bb6c02d6fe8347ce1785016d135ff539c20043c",
              "status": "affected",
              "version": "290a6ce11d938be52634b3ce1bbc6b78be4d23c1",
              "versionType": "git"
            },
            {
              "lessThan": "159ca7f18129834b6f4c7eae67de48e96c752fc9",
              "status": "affected",
              "version": "290a6ce11d938be52634b3ce1bbc6b78be4d23c1",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/iio/imu/st_lsm6dsx/st_lsm6dsx_buffer.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "4.11"
            },
            {
              "lessThan": "4.11",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.294",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.238",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.183",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.139",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.91",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.12.*",
              "status": "unaffected",
              "version": "6.12.29",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.14.*",
              "status": "unaffected",
              "version": "6.14.7",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.15",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.294",
                  "versionStartIncluding": "4.11",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.238",
                  "versionStartIncluding": "4.11",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.183",
                  "versionStartIncluding": "4.11",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.139",
                  "versionStartIncluding": "4.11",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.91",
                  "versionStartIncluding": "4.11",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.12.29",
                  "versionStartIncluding": "4.11",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.14.7",
                  "versionStartIncluding": "4.11",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.15",
                  "versionStartIncluding": "4.11",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: imu: st_lsm6dsx: fix possible lockup in st_lsm6dsx_read_fifo\n\nPrevent st_lsm6dsx_read_fifo from falling in an infinite loop in case\npattern_len is equal to zero and the device FIFO is not empty."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-05-11T21:18:45.901Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/f06a1a1954527cc4ed086d926c81ff236b2adde9"
        },
        {
          "url": "https://git.kernel.org/stable/c/84e39f628a3a3333add99076e4d6c8b42b12d3a0"
        },
        {
          "url": "https://git.kernel.org/stable/c/f3cf233c946531a92fe651ff2bd15ebbe60630a7"
        },
        {
          "url": "https://git.kernel.org/stable/c/6c4a5000618a8c44200d455c92e2f2a4db264717"
        },
        {
          "url": "https://git.kernel.org/stable/c/da33c4167b9cc1266a97215114cb74679f881d0c"
        },
        {
          "url": "https://git.kernel.org/stable/c/a1cad8a3bca41dead9980615d35efc7bff1fd534"
        },
        {
          "url": "https://git.kernel.org/stable/c/3bb6c02d6fe8347ce1785016d135ff539c20043c"
        },
        {
          "url": "https://git.kernel.org/stable/c/159ca7f18129834b6f4c7eae67de48e96c752fc9"
        }
      ],
      "title": "iio: imu: st_lsm6dsx: fix possible lockup in st_lsm6dsx_read_fifo",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2025-37970",
    "datePublished": "2025-05-20T16:47:17.256Z",
    "dateReserved": "2025-04-16T04:51:23.975Z",
    "dateUpdated": "2026-05-11T21:18:45.901Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2025-37982 (GCVE-0-2025-37982)

Vulnerability from cvelistv5 – Published: 2025-05-20 16:58 – Updated: 2026-05-11 21:19

Title

wifi: wl1251: fix memory leak in wl1251_tx_work

Summary

In the Linux kernel, the following vulnerability has been resolved: wifi: wl1251: fix memory leak in wl1251_tx_work The skb dequeued from tx_queue is lost when wl1251_ps_elp_wakeup fails with a -ETIMEDOUT error. Fix that by queueing the skb back to tx_queue.

Severity

No CVSS data available.

Assigner

Linux

References

9 references

URL	Tags
https://git.kernel.org/stable/c/13c9744c1bcdb5de4…
https://git.kernel.org/stable/c/f08448a885403722c…
https://git.kernel.org/stable/c/2996144be660d930d…
https://git.kernel.org/stable/c/8fd4b9551af214d03…
https://git.kernel.org/stable/c/4a43fd36710669d67…
https://git.kernel.org/stable/c/52f224009ce1e4480…
https://git.kernel.org/stable/c/5a90c29d0204c5ffc…
https://git.kernel.org/stable/c/a0f0dc96de03ffeef…
https://lists.debian.org/debian-lts-announce/2025…

Impacted products

2 products

Vendor	Product	Version
Linux	Linux	Affected: c5483b71936333ba9474f57d0f3a7a7abf9b87a0 , < 13c9744c1bcdb5de4e7dc1a78784788ecec52add (git) Affected: c5483b71936333ba9474f57d0f3a7a7abf9b87a0 , < f08448a885403722c5c77dae51964badfcb69495 (git) Affected: c5483b71936333ba9474f57d0f3a7a7abf9b87a0 , < 2996144be660d930d5e394652abe08fe89dbe00e (git) Affected: c5483b71936333ba9474f57d0f3a7a7abf9b87a0 , < 8fd4b9551af214d037fbc9d8e179840b8b917841 (git) Affected: c5483b71936333ba9474f57d0f3a7a7abf9b87a0 , < 4a43fd36710669d67dbb5c16287a58412582ca26 (git) Affected: c5483b71936333ba9474f57d0f3a7a7abf9b87a0 , < 52f224009ce1e44805e6ff3ffc2a06af9c1c3c5b (git) Affected: c5483b71936333ba9474f57d0f3a7a7abf9b87a0 , < 5a90c29d0204c5ffc45b43b4eced6eef0e19a33a (git) Affected: c5483b71936333ba9474f57d0f3a7a7abf9b87a0 , < a0f0dc96de03ffeefc2a177b7f8acde565cb77f4 (git)
Linux	Linux	Affected: 2.6.32 Unaffected: 0 , < 2.6.32 (semver) Unaffected: 5.4.293 , ≤ 5.4.* (semver) Unaffected: 5.10.237 , ≤ 5.10.* (semver) Unaffected: 5.15.181 , ≤ 5.15.* (semver) Unaffected: 6.1.135 , ≤ 6.1.* (semver) Unaffected: 6.6.88 , ≤ 6.6.* (semver) Unaffected: 6.12.25 , ≤ 6.12.* (semver) Unaffected: 6.14.4 , ≤ 6.14.* (semver) Unaffected: 6.15 , ≤ * (original_commit_for_fix)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2025-11-03T19:57:58.118Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "url": "https://lists.debian.org/debian-lts-announce/2025/05/msg00045.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/wireless/ti/wl1251/tx.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "13c9744c1bcdb5de4e7dc1a78784788ecec52add",
              "status": "affected",
              "version": "c5483b71936333ba9474f57d0f3a7a7abf9b87a0",
              "versionType": "git"
            },
            {
              "lessThan": "f08448a885403722c5c77dae51964badfcb69495",
              "status": "affected",
              "version": "c5483b71936333ba9474f57d0f3a7a7abf9b87a0",
              "versionType": "git"
            },
            {
              "lessThan": "2996144be660d930d5e394652abe08fe89dbe00e",
              "status": "affected",
              "version": "c5483b71936333ba9474f57d0f3a7a7abf9b87a0",
              "versionType": "git"
            },
            {
              "lessThan": "8fd4b9551af214d037fbc9d8e179840b8b917841",
              "status": "affected",
              "version": "c5483b71936333ba9474f57d0f3a7a7abf9b87a0",
              "versionType": "git"
            },
            {
              "lessThan": "4a43fd36710669d67dbb5c16287a58412582ca26",
              "status": "affected",
              "version": "c5483b71936333ba9474f57d0f3a7a7abf9b87a0",
              "versionType": "git"
            },
            {
              "lessThan": "52f224009ce1e44805e6ff3ffc2a06af9c1c3c5b",
              "status": "affected",
              "version": "c5483b71936333ba9474f57d0f3a7a7abf9b87a0",
              "versionType": "git"
            },
            {
              "lessThan": "5a90c29d0204c5ffc45b43b4eced6eef0e19a33a",
              "status": "affected",
              "version": "c5483b71936333ba9474f57d0f3a7a7abf9b87a0",
              "versionType": "git"
            },
            {
              "lessThan": "a0f0dc96de03ffeefc2a177b7f8acde565cb77f4",
              "status": "affected",
              "version": "c5483b71936333ba9474f57d0f3a7a7abf9b87a0",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/wireless/ti/wl1251/tx.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "2.6.32"
            },
            {
              "lessThan": "2.6.32",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.293",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.237",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.181",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.135",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.88",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.12.*",
              "status": "unaffected",
              "version": "6.12.25",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.14.*",
              "status": "unaffected",
              "version": "6.14.4",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.15",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.293",
                  "versionStartIncluding": "2.6.32",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.237",
                  "versionStartIncluding": "2.6.32",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.181",
                  "versionStartIncluding": "2.6.32",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.135",
                  "versionStartIncluding": "2.6.32",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.88",
                  "versionStartIncluding": "2.6.32",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.12.25",
                  "versionStartIncluding": "2.6.32",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.14.4",
                  "versionStartIncluding": "2.6.32",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.15",
                  "versionStartIncluding": "2.6.32",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: wl1251: fix memory leak in wl1251_tx_work\n\nThe skb dequeued from tx_queue is lost when wl1251_ps_elp_wakeup fails\nwith a -ETIMEDOUT error. Fix that by queueing the skb back to tx_queue."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-05-11T21:19:00.392Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/13c9744c1bcdb5de4e7dc1a78784788ecec52add"
        },
        {
          "url": "https://git.kernel.org/stable/c/f08448a885403722c5c77dae51964badfcb69495"
        },
        {
          "url": "https://git.kernel.org/stable/c/2996144be660d930d5e394652abe08fe89dbe00e"
        },
        {
          "url": "https://git.kernel.org/stable/c/8fd4b9551af214d037fbc9d8e179840b8b917841"
        },
        {
          "url": "https://git.kernel.org/stable/c/4a43fd36710669d67dbb5c16287a58412582ca26"
        },
        {
          "url": "https://git.kernel.org/stable/c/52f224009ce1e44805e6ff3ffc2a06af9c1c3c5b"
        },
        {
          "url": "https://git.kernel.org/stable/c/5a90c29d0204c5ffc45b43b4eced6eef0e19a33a"
        },
        {
          "url": "https://git.kernel.org/stable/c/a0f0dc96de03ffeefc2a177b7f8acde565cb77f4"
        }
      ],
      "title": "wifi: wl1251: fix memory leak in wl1251_tx_work",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2025-37982",
    "datePublished": "2025-05-20T16:58:23.861Z",
    "dateReserved": "2025-04-16T04:51:23.975Z",
    "dateUpdated": "2026-05-11T21:19:00.392Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2025-37983 (GCVE-0-2025-37983)

Vulnerability from cvelistv5 – Published: 2025-05-20 17:09 – Updated: 2026-05-11 21:19

Title

qibfs: fix _another_ leak

Summary

In the Linux kernel, the following vulnerability has been resolved: qibfs: fix _another_ leak failure to allocate inode => leaked dentry... this one had been there since the initial merge; to be fair, if we are that far OOM, the odds of failing at that particular allocation are low...

Severity

No CVSS data available.

Assigner

Linux

References

9 references

URL	Tags
https://git.kernel.org/stable/c/5e280cce3a29b7fe7…
https://git.kernel.org/stable/c/3c2fde33e3e505dfd…
https://git.kernel.org/stable/c/5fe708c5e3c8b2152…
https://git.kernel.org/stable/c/545defa656568c745…
https://git.kernel.org/stable/c/5d53e88d8370b9ab1…
https://git.kernel.org/stable/c/47ab2caba495c1d6a…
https://git.kernel.org/stable/c/24faa6ea274a2b96d…
https://git.kernel.org/stable/c/bdb43af4fdb39f844…
https://lists.debian.org/debian-lts-announce/2025…

Impacted products

2 products

Vendor	Product	Version
Linux	Linux	Affected: f931551bafe1f10ded7f5282e2aa162c267a2e5d , < 5e280cce3a29b7fe7b828c6ccd5aa5ba87ceb6b6 (git) Affected: f931551bafe1f10ded7f5282e2aa162c267a2e5d , < 3c2fde33e3e505dfd1a895d1f24bad650c655e14 (git) Affected: f931551bafe1f10ded7f5282e2aa162c267a2e5d , < 5fe708c5e3c8b2152c6caaa67243e431a5d6cca3 (git) Affected: f931551bafe1f10ded7f5282e2aa162c267a2e5d , < 545defa656568c74590317cd30068f85134a8216 (git) Affected: f931551bafe1f10ded7f5282e2aa162c267a2e5d , < 5d53e88d8370b9ab14dd830abb410d9a2671edb6 (git) Affected: f931551bafe1f10ded7f5282e2aa162c267a2e5d , < 47ab2caba495c1d6a899d284e541a8df656dcfe9 (git) Affected: f931551bafe1f10ded7f5282e2aa162c267a2e5d , < 24faa6ea274a2b96d0a78a0996c3137c2b2a65f0 (git) Affected: f931551bafe1f10ded7f5282e2aa162c267a2e5d , < bdb43af4fdb39f844ede401bdb1258f67a580a27 (git)
Linux	Linux	Affected: 2.6.35 Unaffected: 0 , < 2.6.35 (semver) Unaffected: 5.4.293 , ≤ 5.4.* (semver) Unaffected: 5.10.237 , ≤ 5.10.* (semver) Unaffected: 5.15.181 , ≤ 5.15.* (semver) Unaffected: 6.1.136 , ≤ 6.1.* (semver) Unaffected: 6.6.89 , ≤ 6.6.* (semver) Unaffected: 6.12.26 , ≤ 6.12.* (semver) Unaffected: 6.14.5 , ≤ 6.14.* (semver) Unaffected: 6.15 , ≤ * (original_commit_for_fix)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2025-11-03T19:57:59.628Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "url": "https://lists.debian.org/debian-lts-announce/2025/05/msg00045.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/infiniband/hw/qib/qib_fs.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "5e280cce3a29b7fe7b828c6ccd5aa5ba87ceb6b6",
              "status": "affected",
              "version": "f931551bafe1f10ded7f5282e2aa162c267a2e5d",
              "versionType": "git"
            },
            {
              "lessThan": "3c2fde33e3e505dfd1a895d1f24bad650c655e14",
              "status": "affected",
              "version": "f931551bafe1f10ded7f5282e2aa162c267a2e5d",
              "versionType": "git"
            },
            {
              "lessThan": "5fe708c5e3c8b2152c6caaa67243e431a5d6cca3",
              "status": "affected",
              "version": "f931551bafe1f10ded7f5282e2aa162c267a2e5d",
              "versionType": "git"
            },
            {
              "lessThan": "545defa656568c74590317cd30068f85134a8216",
              "status": "affected",
              "version": "f931551bafe1f10ded7f5282e2aa162c267a2e5d",
              "versionType": "git"
            },
            {
              "lessThan": "5d53e88d8370b9ab14dd830abb410d9a2671edb6",
              "status": "affected",
              "version": "f931551bafe1f10ded7f5282e2aa162c267a2e5d",
              "versionType": "git"
            },
            {
              "lessThan": "47ab2caba495c1d6a899d284e541a8df656dcfe9",
              "status": "affected",
              "version": "f931551bafe1f10ded7f5282e2aa162c267a2e5d",
              "versionType": "git"
            },
            {
              "lessThan": "24faa6ea274a2b96d0a78a0996c3137c2b2a65f0",
              "status": "affected",
              "version": "f931551bafe1f10ded7f5282e2aa162c267a2e5d",
              "versionType": "git"
            },
            {
              "lessThan": "bdb43af4fdb39f844ede401bdb1258f67a580a27",
              "status": "affected",
              "version": "f931551bafe1f10ded7f5282e2aa162c267a2e5d",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/infiniband/hw/qib/qib_fs.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "2.6.35"
            },
            {
              "lessThan": "2.6.35",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.293",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.237",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.181",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.136",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.89",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.12.*",
              "status": "unaffected",
              "version": "6.12.26",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.14.*",
              "status": "unaffected",
              "version": "6.14.5",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.15",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.293",
                  "versionStartIncluding": "2.6.35",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.237",
                  "versionStartIncluding": "2.6.35",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.181",
                  "versionStartIncluding": "2.6.35",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.136",
                  "versionStartIncluding": "2.6.35",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.89",
                  "versionStartIncluding": "2.6.35",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.12.26",
                  "versionStartIncluding": "2.6.35",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.14.5",
                  "versionStartIncluding": "2.6.35",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.15",
                  "versionStartIncluding": "2.6.35",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nqibfs: fix _another_ leak\n\nfailure to allocate inode =\u003e leaked dentry...\n\nthis one had been there since the initial merge; to be fair,\nif we are that far OOM, the odds of failing at that particular\nallocation are low..."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-05-11T21:19:01.534Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/5e280cce3a29b7fe7b828c6ccd5aa5ba87ceb6b6"
        },
        {
          "url": "https://git.kernel.org/stable/c/3c2fde33e3e505dfd1a895d1f24bad650c655e14"
        },
        {
          "url": "https://git.kernel.org/stable/c/5fe708c5e3c8b2152c6caaa67243e431a5d6cca3"
        },
        {
          "url": "https://git.kernel.org/stable/c/545defa656568c74590317cd30068f85134a8216"
        },
        {
          "url": "https://git.kernel.org/stable/c/5d53e88d8370b9ab14dd830abb410d9a2671edb6"
        },
        {
          "url": "https://git.kernel.org/stable/c/47ab2caba495c1d6a899d284e541a8df656dcfe9"
        },
        {
          "url": "https://git.kernel.org/stable/c/24faa6ea274a2b96d0a78a0996c3137c2b2a65f0"
        },
        {
          "url": "https://git.kernel.org/stable/c/bdb43af4fdb39f844ede401bdb1258f67a580a27"
        }
      ],
      "title": "qibfs: fix _another_ leak",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2025-37983",
    "datePublished": "2025-05-20T17:09:17.666Z",
    "dateReserved": "2025-04-16T04:51:23.975Z",
    "dateUpdated": "2026-05-11T21:19:01.534Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2025-37985 (GCVE-0-2025-37985)

Vulnerability from cvelistv5 – Published: 2025-05-20 17:09 – Updated: 2026-05-11 21:19

Title

USB: wdm: close race between wdm_open and wdm_wwan_port_stop

Summary

In the Linux kernel, the following vulnerability has been resolved: USB: wdm: close race between wdm_open and wdm_wwan_port_stop Clearing WDM_WWAN_IN_USE must be the last action or we can open a chardev whose URBs are still poisoned

Severity

No CVSS data available.

Assigner

Linux

References

7 references

URL	Tags
https://git.kernel.org/stable/c/b02a3fef3e8c8fe5a…
https://git.kernel.org/stable/c/217fe1fc7d112595a…
https://git.kernel.org/stable/c/54f7f8978af19f899…
https://git.kernel.org/stable/c/52ae15c665b5fe587…
https://git.kernel.org/stable/c/e3c9adc69357fcbe6…
https://git.kernel.org/stable/c/c1846ed4eb527bdfe…
https://lists.debian.org/debian-lts-announce/2025…

Impacted products

2 products

Vendor	Product	Version
Linux	Linux	Affected: cac6fb015f719104e60b1c68c15ca5b734f57b9c , < b02a3fef3e8c8fe5a0a266f7a14f38cc608fb167 (git) Affected: cac6fb015f719104e60b1c68c15ca5b734f57b9c , < 217fe1fc7d112595a793e02b306710e702eac492 (git) Affected: cac6fb015f719104e60b1c68c15ca5b734f57b9c , < 54f7f8978af19f899dec80bcc71c8d4855dfbd72 (git) Affected: cac6fb015f719104e60b1c68c15ca5b734f57b9c , < 52ae15c665b5fe5876655aaccc3ef70560b0e314 (git) Affected: cac6fb015f719104e60b1c68c15ca5b734f57b9c , < e3c9adc69357fcbe6253a2bc2588ee4bbaaedbe9 (git) Affected: cac6fb015f719104e60b1c68c15ca5b734f57b9c , < c1846ed4eb527bdfe6b3b7dd2c78e2af4bf98f4f (git)
Linux	Linux	Affected: 5.14 Unaffected: 0 , < 5.14 (semver) Unaffected: 5.15.181 , ≤ 5.15.* (semver) Unaffected: 6.1.136 , ≤ 6.1.* (semver) Unaffected: 6.6.89 , ≤ 6.6.* (semver) Unaffected: 6.12.26 , ≤ 6.12.* (semver) Unaffected: 6.14.5 , ≤ 6.14.* (semver) Unaffected: 6.15 , ≤ * (original_commit_for_fix)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2025-11-03T19:58:01.024Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "url": "https://lists.debian.org/debian-lts-announce/2025/05/msg00045.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/usb/class/cdc-wdm.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "b02a3fef3e8c8fe5a0a266f7a14f38cc608fb167",
              "status": "affected",
              "version": "cac6fb015f719104e60b1c68c15ca5b734f57b9c",
              "versionType": "git"
            },
            {
              "lessThan": "217fe1fc7d112595a793e02b306710e702eac492",
              "status": "affected",
              "version": "cac6fb015f719104e60b1c68c15ca5b734f57b9c",
              "versionType": "git"
            },
            {
              "lessThan": "54f7f8978af19f899dec80bcc71c8d4855dfbd72",
              "status": "affected",
              "version": "cac6fb015f719104e60b1c68c15ca5b734f57b9c",
              "versionType": "git"
            },
            {
              "lessThan": "52ae15c665b5fe5876655aaccc3ef70560b0e314",
              "status": "affected",
              "version": "cac6fb015f719104e60b1c68c15ca5b734f57b9c",
              "versionType": "git"
            },
            {
              "lessThan": "e3c9adc69357fcbe6253a2bc2588ee4bbaaedbe9",
              "status": "affected",
              "version": "cac6fb015f719104e60b1c68c15ca5b734f57b9c",
              "versionType": "git"
            },
            {
              "lessThan": "c1846ed4eb527bdfe6b3b7dd2c78e2af4bf98f4f",
              "status": "affected",
              "version": "cac6fb015f719104e60b1c68c15ca5b734f57b9c",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/usb/class/cdc-wdm.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.14"
            },
            {
              "lessThan": "5.14",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.181",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.136",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.89",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.12.*",
              "status": "unaffected",
              "version": "6.12.26",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.14.*",
              "status": "unaffected",
              "version": "6.14.5",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.15",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.181",
                  "versionStartIncluding": "5.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.136",
                  "versionStartIncluding": "5.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.89",
                  "versionStartIncluding": "5.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.12.26",
                  "versionStartIncluding": "5.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.14.5",
                  "versionStartIncluding": "5.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.15",
                  "versionStartIncluding": "5.14",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nUSB: wdm: close race between wdm_open and wdm_wwan_port_stop\n\nClearing WDM_WWAN_IN_USE must be the last action or\nwe can open a chardev whose URBs are still poisoned"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-05-11T21:19:04.908Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/b02a3fef3e8c8fe5a0a266f7a14f38cc608fb167"
        },
        {
          "url": "https://git.kernel.org/stable/c/217fe1fc7d112595a793e02b306710e702eac492"
        },
        {
          "url": "https://git.kernel.org/stable/c/54f7f8978af19f899dec80bcc71c8d4855dfbd72"
        },
        {
          "url": "https://git.kernel.org/stable/c/52ae15c665b5fe5876655aaccc3ef70560b0e314"
        },
        {
          "url": "https://git.kernel.org/stable/c/e3c9adc69357fcbe6253a2bc2588ee4bbaaedbe9"
        },
        {
          "url": "https://git.kernel.org/stable/c/c1846ed4eb527bdfe6b3b7dd2c78e2af4bf98f4f"
        }
      ],
      "title": "USB: wdm: close race between wdm_open and wdm_wwan_port_stop",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2025-37985",
    "datePublished": "2025-05-20T17:09:18.963Z",
    "dateReserved": "2025-04-16T04:51:23.976Z",
    "dateUpdated": "2026-05-11T21:19:04.908Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2025-37989 (GCVE-0-2025-37989)

Vulnerability from cvelistv5 – Published: 2025-05-20 17:09 – Updated: 2026-05-11 21:19

Title

net: phy: leds: fix memory leak

Summary

In the Linux kernel, the following vulnerability has been resolved: net: phy: leds: fix memory leak A network restart test on a router led to an out-of-memory condition, which was traced to a memory leak in the PHY LED trigger code. The root cause is misuse of the devm API. The registration function (phy_led_triggers_register) is called from phy_attach_direct, not phy_probe, and the unregister function (phy_led_triggers_unregister) is called from phy_detach, not phy_remove. This means the register and unregister functions can be called multiple times for the same PHY device, but devm-allocated memory is not freed until the driver is unbound. This also prevents kmemleak from detecting the leak, as the devm API internally stores the allocated pointer. Fix this by replacing devm_kzalloc/devm_kcalloc with standard kzalloc/kcalloc, and add the corresponding kfree calls in the unregister path.

Severity

No CVSS data available.

Assigner

Linux

References

9 references

URL	Tags
https://git.kernel.org/stable/c/966d6494e2ed9be90…
https://git.kernel.org/stable/c/95bed65cc0eb2a610…
https://git.kernel.org/stable/c/663c3da86e807c6c0…
https://git.kernel.org/stable/c/f41f097f68a33d392…
https://git.kernel.org/stable/c/618541a6cc1511064…
https://git.kernel.org/stable/c/41143e71052a00d65…
https://git.kernel.org/stable/c/7f3d5880800f962c3…
https://git.kernel.org/stable/c/b7f0ee992adf601aa…
https://lists.debian.org/debian-lts-announce/2025…

Impacted products

2 products

Vendor	Product	Version
Linux	Linux	Affected: 2e0bc452f4721520502575362a9cd3c1248d2337 , < 966d6494e2ed9be9052fcd9815afba830896aaf8 (git) Affected: 2e0bc452f4721520502575362a9cd3c1248d2337 , < 95bed65cc0eb2a610550abf849a8b94374da80a7 (git) Affected: 2e0bc452f4721520502575362a9cd3c1248d2337 , < 663c3da86e807c6c07ed48f911c7526fad6fe1ff (git) Affected: 2e0bc452f4721520502575362a9cd3c1248d2337 , < f41f097f68a33d392579885426d0734a81219501 (git) Affected: 2e0bc452f4721520502575362a9cd3c1248d2337 , < 618541a6cc1511064dfa58c89b3445e21844092f (git) Affected: 2e0bc452f4721520502575362a9cd3c1248d2337 , < 41143e71052a00d654c15dc924fda50c1e7357d0 (git) Affected: 2e0bc452f4721520502575362a9cd3c1248d2337 , < 7f3d5880800f962c347777c4f8358f29f5fc403c (git) Affected: 2e0bc452f4721520502575362a9cd3c1248d2337 , < b7f0ee992adf601aa00c252418266177eb7ac2bc (git)
Linux	Linux	Affected: 4.10 Unaffected: 0 , < 4.10 (semver) Unaffected: 5.4.293 , ≤ 5.4.* (semver) Unaffected: 5.10.237 , ≤ 5.10.* (semver) Unaffected: 5.15.181 , ≤ 5.15.* (semver) Unaffected: 6.1.136 , ≤ 6.1.* (semver) Unaffected: 6.6.89 , ≤ 6.6.* (semver) Unaffected: 6.12.26 , ≤ 6.12.* (semver) Unaffected: 6.14.5 , ≤ 6.14.* (semver) Unaffected: 6.15 , ≤ * (original_commit_for_fix)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2025-11-03T19:58:02.430Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "url": "https://lists.debian.org/debian-lts-announce/2025/05/msg00045.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/phy/phy_led_triggers.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "966d6494e2ed9be9052fcd9815afba830896aaf8",
              "status": "affected",
              "version": "2e0bc452f4721520502575362a9cd3c1248d2337",
              "versionType": "git"
            },
            {
              "lessThan": "95bed65cc0eb2a610550abf849a8b94374da80a7",
              "status": "affected",
              "version": "2e0bc452f4721520502575362a9cd3c1248d2337",
              "versionType": "git"
            },
            {
              "lessThan": "663c3da86e807c6c07ed48f911c7526fad6fe1ff",
              "status": "affected",
              "version": "2e0bc452f4721520502575362a9cd3c1248d2337",
              "versionType": "git"
            },
            {
              "lessThan": "f41f097f68a33d392579885426d0734a81219501",
              "status": "affected",
              "version": "2e0bc452f4721520502575362a9cd3c1248d2337",
              "versionType": "git"
            },
            {
              "lessThan": "618541a6cc1511064dfa58c89b3445e21844092f",
              "status": "affected",
              "version": "2e0bc452f4721520502575362a9cd3c1248d2337",
              "versionType": "git"
            },
            {
              "lessThan": "41143e71052a00d654c15dc924fda50c1e7357d0",
              "status": "affected",
              "version": "2e0bc452f4721520502575362a9cd3c1248d2337",
              "versionType": "git"
            },
            {
              "lessThan": "7f3d5880800f962c347777c4f8358f29f5fc403c",
              "status": "affected",
              "version": "2e0bc452f4721520502575362a9cd3c1248d2337",
              "versionType": "git"
            },
            {
              "lessThan": "b7f0ee992adf601aa00c252418266177eb7ac2bc",
              "status": "affected",
              "version": "2e0bc452f4721520502575362a9cd3c1248d2337",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/phy/phy_led_triggers.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "4.10"
            },
            {
              "lessThan": "4.10",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.293",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.237",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.181",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.136",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.89",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.12.*",
              "status": "unaffected",
              "version": "6.12.26",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.14.*",
              "status": "unaffected",
              "version": "6.14.5",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.15",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.293",
                  "versionStartIncluding": "4.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.237",
                  "versionStartIncluding": "4.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.181",
                  "versionStartIncluding": "4.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.136",
                  "versionStartIncluding": "4.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.89",
                  "versionStartIncluding": "4.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.12.26",
                  "versionStartIncluding": "4.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.14.5",
                  "versionStartIncluding": "4.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.15",
                  "versionStartIncluding": "4.10",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: phy: leds: fix memory leak\n\nA network restart test on a router led to an out-of-memory condition,\nwhich was traced to a memory leak in the PHY LED trigger code.\n\nThe root cause is misuse of the devm API. The registration function\n(phy_led_triggers_register) is called from phy_attach_direct, not\nphy_probe, and the unregister function (phy_led_triggers_unregister)\nis called from phy_detach, not phy_remove. This means the register and\nunregister functions can be called multiple times for the same PHY\ndevice, but devm-allocated memory is not freed until the driver is\nunbound.\n\nThis also prevents kmemleak from detecting the leak, as the devm API\ninternally stores the allocated pointer.\n\nFix this by replacing devm_kzalloc/devm_kcalloc with standard\nkzalloc/kcalloc, and add the corresponding kfree calls in the unregister\npath."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-05-11T21:19:09.547Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/966d6494e2ed9be9052fcd9815afba830896aaf8"
        },
        {
          "url": "https://git.kernel.org/stable/c/95bed65cc0eb2a610550abf849a8b94374da80a7"
        },
        {
          "url": "https://git.kernel.org/stable/c/663c3da86e807c6c07ed48f911c7526fad6fe1ff"
        },
        {
          "url": "https://git.kernel.org/stable/c/f41f097f68a33d392579885426d0734a81219501"
        },
        {
          "url": "https://git.kernel.org/stable/c/618541a6cc1511064dfa58c89b3445e21844092f"
        },
        {
          "url": "https://git.kernel.org/stable/c/41143e71052a00d654c15dc924fda50c1e7357d0"
        },
        {
          "url": "https://git.kernel.org/stable/c/7f3d5880800f962c347777c4f8358f29f5fc403c"
        },
        {
          "url": "https://git.kernel.org/stable/c/b7f0ee992adf601aa00c252418266177eb7ac2bc"
        }
      ],
      "title": "net: phy: leds: fix memory leak",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2025-37989",
    "datePublished": "2025-05-20T17:09:21.419Z",
    "dateReserved": "2025-04-16T04:51:23.976Z",
    "dateUpdated": "2026-05-11T21:19:09.547Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2025-37990 (GCVE-0-2025-37990)

Vulnerability from cvelistv5 – Published: 2025-05-20 17:18 – Updated: 2026-05-11 21:19

Title

wifi: brcm80211: fmac: Add error handling for brcmf_usb_dl_writeimage()

Summary

In the Linux kernel, the following vulnerability has been resolved: wifi: brcm80211: fmac: Add error handling for brcmf_usb_dl_writeimage() The function brcmf_usb_dl_writeimage() calls the function brcmf_usb_dl_cmd() but dose not check its return value. The 'state.state' and the 'state.bytes' are uninitialized if the function brcmf_usb_dl_cmd() fails. It is dangerous to use uninitialized variables in the conditions. Add error handling for brcmf_usb_dl_cmd() to jump to error handling path if the brcmf_usb_dl_cmd() fails and the 'state.state' and the 'state.bytes' are uninitialized. Improve the error message to report more detailed error information.

Severity

No CVSS data available.

Assigner

Linux

References

10 references

URL	Tags
https://git.kernel.org/stable/c/972bf75e53f778c78…
https://git.kernel.org/stable/c/62a4f2955d9a1745b…
https://git.kernel.org/stable/c/508be7c001437baca…
https://git.kernel.org/stable/c/524b70441baba453b…
https://git.kernel.org/stable/c/08424a0922fb9e32a…
https://git.kernel.org/stable/c/bdb435ef9815b1ae2…
https://git.kernel.org/stable/c/fa9b9f02212574ee1…
https://git.kernel.org/stable/c/8e089e7b585d95122…
https://lists.debian.org/debian-lts-announce/2025…
https://lists.debian.org/debian-lts-announce/2025…

Impacted products

2 products

Vendor	Product	Version
Linux	Linux	Affected: 71bb244ba2fd5390eefe4ee9054abdb3f8b05922 , < 972bf75e53f778c78039c5d139dd47443a6d66a1 (git) Affected: 71bb244ba2fd5390eefe4ee9054abdb3f8b05922 , < 62a4f2955d9a1745bdb410bf83fb16666d8865d6 (git) Affected: 71bb244ba2fd5390eefe4ee9054abdb3f8b05922 , < 508be7c001437bacad7b9a43f08a723887bcd1ea (git) Affected: 71bb244ba2fd5390eefe4ee9054abdb3f8b05922 , < 524b70441baba453b193c418e3142bd31059cc1f (git) Affected: 71bb244ba2fd5390eefe4ee9054abdb3f8b05922 , < 08424a0922fb9e32a19b09d852ee87fb6c497538 (git) Affected: 71bb244ba2fd5390eefe4ee9054abdb3f8b05922 , < bdb435ef9815b1ae28eefffa01c6959d0fcf1fa7 (git) Affected: 71bb244ba2fd5390eefe4ee9054abdb3f8b05922 , < fa9b9f02212574ee1867fbefb0a675362a71b31d (git) Affected: 71bb244ba2fd5390eefe4ee9054abdb3f8b05922 , < 8e089e7b585d95122c8122d732d1d5ef8f879396 (git)
Linux	Linux	Affected: 3.4 Unaffected: 0 , < 3.4 (semver) Unaffected: 5.4.294 , ≤ 5.4.* (semver) Unaffected: 5.10.238 , ≤ 5.10.* (semver) Unaffected: 5.15.182 , ≤ 5.15.* (semver) Unaffected: 6.1.138 , ≤ 6.1.* (semver) Unaffected: 6.6.90 , ≤ 6.6.* (semver) Unaffected: 6.12.28 , ≤ 6.12.* (semver) Unaffected: 6.14.6 , ≤ 6.14.* (semver) Unaffected: 6.15 , ≤ * (original_commit_for_fix)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2025-11-03T19:58:03.822Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "url": "https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html"
          },
          {
            "url": "https://lists.debian.org/debian-lts-announce/2025/08/msg00010.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/wireless/broadcom/brcm80211/brcmfmac/usb.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "972bf75e53f778c78039c5d139dd47443a6d66a1",
              "status": "affected",
              "version": "71bb244ba2fd5390eefe4ee9054abdb3f8b05922",
              "versionType": "git"
            },
            {
              "lessThan": "62a4f2955d9a1745bdb410bf83fb16666d8865d6",
              "status": "affected",
              "version": "71bb244ba2fd5390eefe4ee9054abdb3f8b05922",
              "versionType": "git"
            },
            {
              "lessThan": "508be7c001437bacad7b9a43f08a723887bcd1ea",
              "status": "affected",
              "version": "71bb244ba2fd5390eefe4ee9054abdb3f8b05922",
              "versionType": "git"
            },
            {
              "lessThan": "524b70441baba453b193c418e3142bd31059cc1f",
              "status": "affected",
              "version": "71bb244ba2fd5390eefe4ee9054abdb3f8b05922",
              "versionType": "git"
            },
            {
              "lessThan": "08424a0922fb9e32a19b09d852ee87fb6c497538",
              "status": "affected",
              "version": "71bb244ba2fd5390eefe4ee9054abdb3f8b05922",
              "versionType": "git"
            },
            {
              "lessThan": "bdb435ef9815b1ae28eefffa01c6959d0fcf1fa7",
              "status": "affected",
              "version": "71bb244ba2fd5390eefe4ee9054abdb3f8b05922",
              "versionType": "git"
            },
            {
              "lessThan": "fa9b9f02212574ee1867fbefb0a675362a71b31d",
              "status": "affected",
              "version": "71bb244ba2fd5390eefe4ee9054abdb3f8b05922",
              "versionType": "git"
            },
            {
              "lessThan": "8e089e7b585d95122c8122d732d1d5ef8f879396",
              "status": "affected",
              "version": "71bb244ba2fd5390eefe4ee9054abdb3f8b05922",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/wireless/broadcom/brcm80211/brcmfmac/usb.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "3.4"
            },
            {
              "lessThan": "3.4",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.294",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.238",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.182",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.138",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.90",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.12.*",
              "status": "unaffected",
              "version": "6.12.28",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.14.*",
              "status": "unaffected",
              "version": "6.14.6",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.15",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.294",
                  "versionStartIncluding": "3.4",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.238",
                  "versionStartIncluding": "3.4",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.182",
                  "versionStartIncluding": "3.4",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.138",
                  "versionStartIncluding": "3.4",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.90",
                  "versionStartIncluding": "3.4",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.12.28",
                  "versionStartIncluding": "3.4",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.14.6",
                  "versionStartIncluding": "3.4",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.15",
                  "versionStartIncluding": "3.4",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: brcm80211: fmac: Add error handling for brcmf_usb_dl_writeimage()\n\nThe function brcmf_usb_dl_writeimage() calls the function\nbrcmf_usb_dl_cmd() but dose not check its return value. The\n\u0027state.state\u0027 and the \u0027state.bytes\u0027 are uninitialized if the\nfunction brcmf_usb_dl_cmd() fails. It is dangerous to use\nuninitialized variables in the conditions.\n\nAdd error handling for brcmf_usb_dl_cmd() to jump to error\nhandling path if the brcmf_usb_dl_cmd() fails and the\n\u0027state.state\u0027 and the \u0027state.bytes\u0027 are uninitialized.\n\nImprove the error message to report more detailed error\ninformation."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-05-11T21:19:10.658Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/972bf75e53f778c78039c5d139dd47443a6d66a1"
        },
        {
          "url": "https://git.kernel.org/stable/c/62a4f2955d9a1745bdb410bf83fb16666d8865d6"
        },
        {
          "url": "https://git.kernel.org/stable/c/508be7c001437bacad7b9a43f08a723887bcd1ea"
        },
        {
          "url": "https://git.kernel.org/stable/c/524b70441baba453b193c418e3142bd31059cc1f"
        },
        {
          "url": "https://git.kernel.org/stable/c/08424a0922fb9e32a19b09d852ee87fb6c497538"
        },
        {
          "url": "https://git.kernel.org/stable/c/bdb435ef9815b1ae28eefffa01c6959d0fcf1fa7"
        },
        {
          "url": "https://git.kernel.org/stable/c/fa9b9f02212574ee1867fbefb0a675362a71b31d"
        },
        {
          "url": "https://git.kernel.org/stable/c/8e089e7b585d95122c8122d732d1d5ef8f879396"
        }
      ],
      "title": "wifi: brcm80211: fmac: Add error handling for brcmf_usb_dl_writeimage()",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2025-37990",
    "datePublished": "2025-05-20T17:18:45.366Z",
    "dateReserved": "2025-04-16T04:51:23.976Z",
    "dateUpdated": "2026-05-11T21:19:10.658Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2025-37991 (GCVE-0-2025-37991)

Vulnerability from cvelistv5 – Published: 2025-05-20 17:18 – Updated: 2026-05-11 21:19

Title

parisc: Fix double SIGFPE crash

Summary

In the Linux kernel, the following vulnerability has been resolved: parisc: Fix double SIGFPE crash Camm noticed that on parisc a SIGFPE exception will crash an application with a second SIGFPE in the signal handler. Dave analyzed it, and it happens because glibc uses a double-word floating-point store to atomically update function descriptors. As a result of lazy binding, we hit a floating-point store in fpe_func almost immediately. When the T bit is set, an assist exception trap occurs when when the co-processor encounters *any* floating-point instruction except for a double store of register %fr0. The latter cancels all pending traps. Let's fix this by clearing the Trap (T) bit in the FP status register before returning to the signal handler in userspace. The issue can be reproduced with this test program: root@parisc:~# cat fpe.c static void fpe_func(int sig, siginfo_t *i, void *v) { sigset_t set; sigemptyset(&set); sigaddset(&set, SIGFPE); sigprocmask(SIG_UNBLOCK, &set, NULL); printf("GOT signal %d with si_code %ld\n", sig, i->si_code); } int main() { struct sigaction action = { .sa_sigaction = fpe_func, .sa_flags = SA_RESTART|SA_SIGINFO }; sigaction(SIGFPE, &action, 0); feenableexcept(FE_OVERFLOW); return printf("%lf\n",1.7976931348623158E308*1.7976931348623158E308); } root@parisc:~# gcc fpe.c -lm root@parisc:~# ./a.out Floating point exception root@parisc:~# strace -f ./a.out execve("./a.out", ["./a.out"], 0xf9ac7034 /* 20 vars */) = 0 getrlimit(RLIMIT_STACK, {rlim_cur=8192*1024, rlim_max=RLIM_INFINITY}) = 0 ... rt_sigaction(SIGFPE, {sa_handler=0x1110a, sa_mask=[], sa_flags=SA_RESTART|SA_SIGINFO}, NULL, 8) = 0 --- SIGFPE {si_signo=SIGFPE, si_code=FPE_FLTOVF, si_addr=0x1078f} --- --- SIGFPE {si_signo=SIGFPE, si_code=FPE_FLTOVF, si_addr=0xf8f21237} --- +++ killed by SIGFPE +++ Floating point exception

Severity

No CVSS data available.

Assigner

Linux

References

9 references

URL	Tags
https://git.kernel.org/stable/c/2a1aff3616b3b57aa…
https://git.kernel.org/stable/c/757ba4d17b8684828…
https://git.kernel.org/stable/c/ec4584495868bd465…
https://git.kernel.org/stable/c/6c639af49e9e5615a…
https://git.kernel.org/stable/c/6a098c51d18ec9948…
https://git.kernel.org/stable/c/cf21e890f56b7d003…
https://git.kernel.org/stable/c/df3592e493d7f29ba…
https://git.kernel.org/stable/c/de3629baf5a33af19…
https://lists.debian.org/debian-lts-announce/2025…

Impacted products

2 products

Vendor	Product	Version
Linux	Linux	Affected: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 , < 2a1aff3616b3b57aa4a5f8a7762cce1e82493fe6 (git) Affected: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 , < 757ba4d17b868482837c566cfefca59e2296c608 (git) Affected: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 , < ec4584495868bd465fe60a3f771915c0e7ce7951 (git) Affected: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 , < 6c639af49e9e5615a8395981eaf5943fb40acd6f (git) Affected: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 , < 6a098c51d18ec99485668da44294565c43dbc106 (git) Affected: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 , < cf21e890f56b7d0038ddaf25224e4f4c69ecd143 (git) Affected: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 , < df3592e493d7f29bae4ffde9a9325de50ddf962e (git) Affected: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 , < de3629baf5a33af1919dec7136d643b0662e85ef (git)
Linux	Linux	Affected: 2.6.12 Unaffected: 0 , < 2.6.12 (semver) Unaffected: 5.4.294 , ≤ 5.4.* (semver) Unaffected: 5.10.238 , ≤ 5.10.* (semver) Unaffected: 5.15.182 , ≤ 5.15.* (semver) Unaffected: 6.1.138 , ≤ 6.1.* (semver) Unaffected: 6.6.90 , ≤ 6.6.* (semver) Unaffected: 6.12.28 , ≤ 6.12.* (semver) Unaffected: 6.14.6 , ≤ 6.14.* (semver) Unaffected: 6.15 , ≤ * (original_commit_for_fix)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2025-11-03T19:58:05.217Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "url": "https://lists.debian.org/debian-lts-announce/2025/08/msg00010.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "arch/parisc/math-emu/driver.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "2a1aff3616b3b57aa4a5f8a7762cce1e82493fe6",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "757ba4d17b868482837c566cfefca59e2296c608",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "ec4584495868bd465fe60a3f771915c0e7ce7951",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "6c639af49e9e5615a8395981eaf5943fb40acd6f",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "6a098c51d18ec99485668da44294565c43dbc106",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "cf21e890f56b7d0038ddaf25224e4f4c69ecd143",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "df3592e493d7f29bae4ffde9a9325de50ddf962e",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "de3629baf5a33af1919dec7136d643b0662e85ef",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "arch/parisc/math-emu/driver.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "2.6.12"
            },
            {
              "lessThan": "2.6.12",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.294",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.238",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.182",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.138",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.90",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.12.*",
              "status": "unaffected",
              "version": "6.12.28",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.14.*",
              "status": "unaffected",
              "version": "6.14.6",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.15",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.294",
                  "versionStartIncluding": "2.6.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.238",
                  "versionStartIncluding": "2.6.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.182",
                  "versionStartIncluding": "2.6.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.138",
                  "versionStartIncluding": "2.6.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.90",
                  "versionStartIncluding": "2.6.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.12.28",
                  "versionStartIncluding": "2.6.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.14.6",
                  "versionStartIncluding": "2.6.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.15",
                  "versionStartIncluding": "2.6.12",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nparisc: Fix double SIGFPE crash\n\nCamm noticed that on parisc a SIGFPE exception will crash an application with\na second SIGFPE in the signal handler.  Dave analyzed it, and it happens\nbecause glibc uses a double-word floating-point store to atomically update\nfunction descriptors. As a result of lazy binding, we hit a floating-point\nstore in fpe_func almost immediately.\n\nWhen the T bit is set, an assist exception trap occurs when when the\nco-processor encounters *any* floating-point instruction except for a double\nstore of register %fr0.  The latter cancels all pending traps.  Let\u0027s fix this\nby clearing the Trap (T) bit in the FP status register before returning to the\nsignal handler in userspace.\n\nThe issue can be reproduced with this test program:\n\nroot@parisc:~# cat fpe.c\n\nstatic void fpe_func(int sig, siginfo_t *i, void *v) {\n        sigset_t set;\n        sigemptyset(\u0026set);\n        sigaddset(\u0026set, SIGFPE);\n        sigprocmask(SIG_UNBLOCK, \u0026set, NULL);\n        printf(\"GOT signal %d with si_code %ld\\n\", sig, i-\u003esi_code);\n}\n\nint main() {\n        struct sigaction action = {\n                .sa_sigaction = fpe_func,\n                .sa_flags = SA_RESTART|SA_SIGINFO };\n        sigaction(SIGFPE, \u0026action, 0);\n        feenableexcept(FE_OVERFLOW);\n        return printf(\"%lf\\n\",1.7976931348623158E308*1.7976931348623158E308);\n}\n\nroot@parisc:~# gcc fpe.c -lm\nroot@parisc:~# ./a.out\n Floating point exception\n\nroot@parisc:~# strace -f ./a.out\n execve(\"./a.out\", [\"./a.out\"], 0xf9ac7034 /* 20 vars */) = 0\n getrlimit(RLIMIT_STACK, {rlim_cur=8192*1024, rlim_max=RLIM_INFINITY}) = 0\n ...\n rt_sigaction(SIGFPE, {sa_handler=0x1110a, sa_mask=[], sa_flags=SA_RESTART|SA_SIGINFO}, NULL, 8) = 0\n --- SIGFPE {si_signo=SIGFPE, si_code=FPE_FLTOVF, si_addr=0x1078f} ---\n --- SIGFPE {si_signo=SIGFPE, si_code=FPE_FLTOVF, si_addr=0xf8f21237} ---\n +++ killed by SIGFPE +++\n Floating point exception"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-05-11T21:19:11.846Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/2a1aff3616b3b57aa4a5f8a7762cce1e82493fe6"
        },
        {
          "url": "https://git.kernel.org/stable/c/757ba4d17b868482837c566cfefca59e2296c608"
        },
        {
          "url": "https://git.kernel.org/stable/c/ec4584495868bd465fe60a3f771915c0e7ce7951"
        },
        {
          "url": "https://git.kernel.org/stable/c/6c639af49e9e5615a8395981eaf5943fb40acd6f"
        },
        {
          "url": "https://git.kernel.org/stable/c/6a098c51d18ec99485668da44294565c43dbc106"
        },
        {
          "url": "https://git.kernel.org/stable/c/cf21e890f56b7d0038ddaf25224e4f4c69ecd143"
        },
        {
          "url": "https://git.kernel.org/stable/c/df3592e493d7f29bae4ffde9a9325de50ddf962e"
        },
        {
          "url": "https://git.kernel.org/stable/c/de3629baf5a33af1919dec7136d643b0662e85ef"
        }
      ],
      "title": "parisc: Fix double SIGFPE crash",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2025-37991",
    "datePublished": "2025-05-20T17:18:45.988Z",
    "dateReserved": "2025-04-16T04:51:23.976Z",
    "dateUpdated": "2026-05-11T21:19:11.846Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2025-37992 (GCVE-0-2025-37992)

Vulnerability from cvelistv5 – Published: 2025-05-26 14:54 – Updated: 2026-05-11 21:19

Title

net_sched: Flush gso_skb list too during ->change()

Summary

In the Linux kernel, the following vulnerability has been resolved: net_sched: Flush gso_skb list too during ->change() Previously, when reducing a qdisc's limit via the ->change() operation, only the main skb queue was trimmed, potentially leaving packets in the gso_skb list. This could result in NULL pointer dereference when we only check sch->limit against sch->q.qlen. This patch introduces a new helper, qdisc_dequeue_internal(), which ensures both the gso_skb list and the main queue are properly flushed when trimming excess packets. All relevant qdiscs (codel, fq, fq_codel, fq_pie, hhf, pie) are updated to use this helper in their ->change() routines.

Severity

No CVSS data available.

Assigner

Linux

References

9 references

URL	Tags
https://git.kernel.org/stable/c/ea1132ccb112f51ba…
https://git.kernel.org/stable/c/d3336f746f196c6a5…
https://git.kernel.org/stable/c/d38939ebe0d992d58…
https://git.kernel.org/stable/c/a7d6e0ac0a8861f6b…
https://git.kernel.org/stable/c/d1365ca80b012d8a7…
https://git.kernel.org/stable/c/fe88c7e4fc2c1cd75…
https://git.kernel.org/stable/c/2d3cbfd6d54a2c39c…
https://lists.debian.org/debian-lts-announce/2025…
https://lists.debian.org/debian-lts-announce/2025…

Impacted products

2 products

Vendor	Product	Version
Linux	Linux	Affected: 76e3cc126bb223013a6b9a0e2a51238d1ef2e409 , < ea1132ccb112f51ba749c56a912f67970c2cd542 (git) Affected: 76e3cc126bb223013a6b9a0e2a51238d1ef2e409 , < d3336f746f196c6a53e0480923ae93939f047b6c (git) Affected: 76e3cc126bb223013a6b9a0e2a51238d1ef2e409 , < d38939ebe0d992d581acb6885c1723fa83c1fb2c (git) Affected: 76e3cc126bb223013a6b9a0e2a51238d1ef2e409 , < a7d6e0ac0a8861f6b1027488062251a8e28150fd (git) Affected: 76e3cc126bb223013a6b9a0e2a51238d1ef2e409 , < d1365ca80b012d8a7863e45949e413fb61fa4861 (git) Affected: 76e3cc126bb223013a6b9a0e2a51238d1ef2e409 , < fe88c7e4fc2c1cd75a278a15ffbf1689efad4e76 (git) Affected: 76e3cc126bb223013a6b9a0e2a51238d1ef2e409 , < 2d3cbfd6d54a2c39ce3244f33f85c595844bd7b8 (git)
Linux	Linux	Affected: 3.5 Unaffected: 0 , < 3.5 (semver) Unaffected: 5.10.238 , ≤ 5.10.* (semver) Unaffected: 5.15.184 , ≤ 5.15.* (semver) Unaffected: 6.1.140 , ≤ 6.1.* (semver) Unaffected: 6.6.92 , ≤ 6.6.* (semver) Unaffected: 6.12.30 , ≤ 6.12.* (semver) Unaffected: 6.14.8 , ≤ 6.14.* (semver) Unaffected: 6.15 , ≤ * (original_commit_for_fix)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2025-11-03T19:58:06.592Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "url": "https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html"
          },
          {
            "url": "https://lists.debian.org/debian-lts-announce/2025/08/msg00010.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "include/net/sch_generic.h",
            "net/sched/sch_codel.c",
            "net/sched/sch_fq.c",
            "net/sched/sch_fq_codel.c",
            "net/sched/sch_fq_pie.c",
            "net/sched/sch_hhf.c",
            "net/sched/sch_pie.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "ea1132ccb112f51ba749c56a912f67970c2cd542",
              "status": "affected",
              "version": "76e3cc126bb223013a6b9a0e2a51238d1ef2e409",
              "versionType": "git"
            },
            {
              "lessThan": "d3336f746f196c6a53e0480923ae93939f047b6c",
              "status": "affected",
              "version": "76e3cc126bb223013a6b9a0e2a51238d1ef2e409",
              "versionType": "git"
            },
            {
              "lessThan": "d38939ebe0d992d581acb6885c1723fa83c1fb2c",
              "status": "affected",
              "version": "76e3cc126bb223013a6b9a0e2a51238d1ef2e409",
              "versionType": "git"
            },
            {
              "lessThan": "a7d6e0ac0a8861f6b1027488062251a8e28150fd",
              "status": "affected",
              "version": "76e3cc126bb223013a6b9a0e2a51238d1ef2e409",
              "versionType": "git"
            },
            {
              "lessThan": "d1365ca80b012d8a7863e45949e413fb61fa4861",
              "status": "affected",
              "version": "76e3cc126bb223013a6b9a0e2a51238d1ef2e409",
              "versionType": "git"
            },
            {
              "lessThan": "fe88c7e4fc2c1cd75a278a15ffbf1689efad4e76",
              "status": "affected",
              "version": "76e3cc126bb223013a6b9a0e2a51238d1ef2e409",
              "versionType": "git"
            },
            {
              "lessThan": "2d3cbfd6d54a2c39ce3244f33f85c595844bd7b8",
              "status": "affected",
              "version": "76e3cc126bb223013a6b9a0e2a51238d1ef2e409",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "include/net/sch_generic.h",
            "net/sched/sch_codel.c",
            "net/sched/sch_fq.c",
            "net/sched/sch_fq_codel.c",
            "net/sched/sch_fq_pie.c",
            "net/sched/sch_hhf.c",
            "net/sched/sch_pie.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "3.5"
            },
            {
              "lessThan": "3.5",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.238",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.184",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.140",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.92",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.12.*",
              "status": "unaffected",
              "version": "6.12.30",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.14.*",
              "status": "unaffected",
              "version": "6.14.8",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.15",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.238",
                  "versionStartIncluding": "3.5",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.184",
                  "versionStartIncluding": "3.5",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.140",
                  "versionStartIncluding": "3.5",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.92",
                  "versionStartIncluding": "3.5",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.12.30",
                  "versionStartIncluding": "3.5",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.14.8",
                  "versionStartIncluding": "3.5",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.15",
                  "versionStartIncluding": "3.5",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet_sched: Flush gso_skb list too during -\u003echange()\n\nPreviously, when reducing a qdisc\u0027s limit via the -\u003echange() operation, only\nthe main skb queue was trimmed, potentially leaving packets in the gso_skb\nlist. This could result in NULL pointer dereference when we only check\nsch-\u003elimit against sch-\u003eq.qlen.\n\nThis patch introduces a new helper, qdisc_dequeue_internal(), which ensures\nboth the gso_skb list and the main queue are properly flushed when trimming\nexcess packets. All relevant qdiscs (codel, fq, fq_codel, fq_pie, hhf, pie)\nare updated to use this helper in their -\u003echange() routines."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-05-11T21:19:12.976Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/ea1132ccb112f51ba749c56a912f67970c2cd542"
        },
        {
          "url": "https://git.kernel.org/stable/c/d3336f746f196c6a53e0480923ae93939f047b6c"
        },
        {
          "url": "https://git.kernel.org/stable/c/d38939ebe0d992d581acb6885c1723fa83c1fb2c"
        },
        {
          "url": "https://git.kernel.org/stable/c/a7d6e0ac0a8861f6b1027488062251a8e28150fd"
        },
        {
          "url": "https://git.kernel.org/stable/c/d1365ca80b012d8a7863e45949e413fb61fa4861"
        },
        {
          "url": "https://git.kernel.org/stable/c/fe88c7e4fc2c1cd75a278a15ffbf1689efad4e76"
        },
        {
          "url": "https://git.kernel.org/stable/c/2d3cbfd6d54a2c39ce3244f33f85c595844bd7b8"
        }
      ],
      "title": "net_sched: Flush gso_skb list too during -\u003echange()",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2025-37992",
    "datePublished": "2025-05-26T14:54:15.796Z",
    "dateReserved": "2025-04-16T04:51:23.976Z",
    "dateUpdated": "2026-05-11T21:19:12.976Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2025-37994 (GCVE-0-2025-37994)

Vulnerability from cvelistv5 – Published: 2025-05-29 13:15 – Updated: 2026-05-11 21:19

Title

usb: typec: ucsi: displayport: Fix NULL pointer access

Summary

In the Linux kernel, the following vulnerability has been resolved: usb: typec: ucsi: displayport: Fix NULL pointer access This patch ensures that the UCSI driver waits for all pending tasks in the ucsi_displayport_work workqueue to finish executing before proceeding with the partner removal.

Severity

No CVSS data available.

Assigner

Linux

References

10 references

URL	Tags
https://git.kernel.org/stable/c/9dda1e2a666a8a32c…
https://git.kernel.org/stable/c/a9931f1b52b2d0bf3…
https://git.kernel.org/stable/c/7804c4d63edfdd510…
https://git.kernel.org/stable/c/076ab0631ed492890…
https://git.kernel.org/stable/c/14f298c52188c34ac…
https://git.kernel.org/stable/c/5ad298d6d4aebe122…
https://git.kernel.org/stable/c/e9b63faf5c97deb43…
https://git.kernel.org/stable/c/312d79669e71283d0…
https://lists.debian.org/debian-lts-announce/2025…
https://lists.debian.org/debian-lts-announce/2025…

Impacted products

2 products

Vendor	Product	Version
Linux	Linux	Affected: af8622f6a585d8d82b11cd7987e082861fd0edd3 , < 9dda1e2a666a8a32ce0f153b5dee05c7351f1020 (git) Affected: af8622f6a585d8d82b11cd7987e082861fd0edd3 , < a9931f1b52b2d0bf3952e003fd5901ea7eb851ed (git) Affected: af8622f6a585d8d82b11cd7987e082861fd0edd3 , < 7804c4d63edfdd5105926cc291e806e8f4ce01b5 (git) Affected: af8622f6a585d8d82b11cd7987e082861fd0edd3 , < 076ab0631ed4928905736f1701e25f1e722bc086 (git) Affected: af8622f6a585d8d82b11cd7987e082861fd0edd3 , < 14f298c52188c34acde9760bf5abc669c5c36fdb (git) Affected: af8622f6a585d8d82b11cd7987e082861fd0edd3 , < 5ad298d6d4aebe1229adba6427e417e89a5208d8 (git) Affected: af8622f6a585d8d82b11cd7987e082861fd0edd3 , < e9b63faf5c97deb43fc39a52edbc39d626cc14bf (git) Affected: af8622f6a585d8d82b11cd7987e082861fd0edd3 , < 312d79669e71283d05c05cc49a1a31e59e3d9e0e (git)
Linux	Linux	Affected: 5.2 Unaffected: 0 , < 5.2 (semver) Unaffected: 5.4.294 , ≤ 5.4.* (semver) Unaffected: 5.10.238 , ≤ 5.10.* (semver) Unaffected: 5.15.183 , ≤ 5.15.* (semver) Unaffected: 6.1.139 , ≤ 6.1.* (semver) Unaffected: 6.6.91 , ≤ 6.6.* (semver) Unaffected: 6.12.29 , ≤ 6.12.* (semver) Unaffected: 6.14.7 , ≤ 6.14.* (semver) Unaffected: 6.15 , ≤ * (original_commit_for_fix)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2025-11-03T19:58:07.987Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "url": "https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html"
          },
          {
            "url": "https://lists.debian.org/debian-lts-announce/2025/08/msg00010.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/usb/typec/ucsi/displayport.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "9dda1e2a666a8a32ce0f153b5dee05c7351f1020",
              "status": "affected",
              "version": "af8622f6a585d8d82b11cd7987e082861fd0edd3",
              "versionType": "git"
            },
            {
              "lessThan": "a9931f1b52b2d0bf3952e003fd5901ea7eb851ed",
              "status": "affected",
              "version": "af8622f6a585d8d82b11cd7987e082861fd0edd3",
              "versionType": "git"
            },
            {
              "lessThan": "7804c4d63edfdd5105926cc291e806e8f4ce01b5",
              "status": "affected",
              "version": "af8622f6a585d8d82b11cd7987e082861fd0edd3",
              "versionType": "git"
            },
            {
              "lessThan": "076ab0631ed4928905736f1701e25f1e722bc086",
              "status": "affected",
              "version": "af8622f6a585d8d82b11cd7987e082861fd0edd3",
              "versionType": "git"
            },
            {
              "lessThan": "14f298c52188c34acde9760bf5abc669c5c36fdb",
              "status": "affected",
              "version": "af8622f6a585d8d82b11cd7987e082861fd0edd3",
              "versionType": "git"
            },
            {
              "lessThan": "5ad298d6d4aebe1229adba6427e417e89a5208d8",
              "status": "affected",
              "version": "af8622f6a585d8d82b11cd7987e082861fd0edd3",
              "versionType": "git"
            },
            {
              "lessThan": "e9b63faf5c97deb43fc39a52edbc39d626cc14bf",
              "status": "affected",
              "version": "af8622f6a585d8d82b11cd7987e082861fd0edd3",
              "versionType": "git"
            },
            {
              "lessThan": "312d79669e71283d05c05cc49a1a31e59e3d9e0e",
              "status": "affected",
              "version": "af8622f6a585d8d82b11cd7987e082861fd0edd3",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/usb/typec/ucsi/displayport.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.2"
            },
            {
              "lessThan": "5.2",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.294",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.238",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.183",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.139",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.91",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.12.*",
              "status": "unaffected",
              "version": "6.12.29",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.14.*",
              "status": "unaffected",
              "version": "6.14.7",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.15",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.294",
                  "versionStartIncluding": "5.2",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.238",
                  "versionStartIncluding": "5.2",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.183",
                  "versionStartIncluding": "5.2",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.139",
                  "versionStartIncluding": "5.2",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.91",
                  "versionStartIncluding": "5.2",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.12.29",
                  "versionStartIncluding": "5.2",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.14.7",
                  "versionStartIncluding": "5.2",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.15",
                  "versionStartIncluding": "5.2",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: ucsi: displayport: Fix NULL pointer access\n\nThis patch ensures that the UCSI driver waits for all pending tasks in the\nucsi_displayport_work workqueue to finish executing before proceeding with\nthe partner removal."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-05-11T21:19:15.378Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/9dda1e2a666a8a32ce0f153b5dee05c7351f1020"
        },
        {
          "url": "https://git.kernel.org/stable/c/a9931f1b52b2d0bf3952e003fd5901ea7eb851ed"
        },
        {
          "url": "https://git.kernel.org/stable/c/7804c4d63edfdd5105926cc291e806e8f4ce01b5"
        },
        {
          "url": "https://git.kernel.org/stable/c/076ab0631ed4928905736f1701e25f1e722bc086"
        },
        {
          "url": "https://git.kernel.org/stable/c/14f298c52188c34acde9760bf5abc669c5c36fdb"
        },
        {
          "url": "https://git.kernel.org/stable/c/5ad298d6d4aebe1229adba6427e417e89a5208d8"
        },
        {
          "url": "https://git.kernel.org/stable/c/e9b63faf5c97deb43fc39a52edbc39d626cc14bf"
        },
        {
          "url": "https://git.kernel.org/stable/c/312d79669e71283d05c05cc49a1a31e59e3d9e0e"
        }
      ],
      "title": "usb: typec: ucsi: displayport: Fix NULL pointer access",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2025-37994",
    "datePublished": "2025-05-29T13:15:53.481Z",
    "dateReserved": "2025-04-16T04:51:23.976Z",
    "dateUpdated": "2026-05-11T21:19:15.378Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2025-37995 (GCVE-0-2025-37995)

Vulnerability from cvelistv5 – Published: 2025-05-29 13:15 – Updated: 2026-05-11 21:19

Title

module: ensure that kobject_put() is safe for module type kobjects

Summary

In the Linux kernel, the following vulnerability has been resolved: module: ensure that kobject_put() is safe for module type kobjects In 'lookup_or_create_module_kobject()', an internal kobject is created using 'module_ktype'. So call to 'kobject_put()' on error handling path causes an attempt to use an uninitialized completion pointer in 'module_kobject_release()'. In this scenario, we just want to release kobject without an extra synchronization required for a regular module unloading process, so adding an extra check whether 'complete()' is actually required makes 'kobject_put()' safe.

Severity

No CVSS data available.

Assigner

Linux

References

10 references

URL	Tags
https://git.kernel.org/stable/c/93799fb988757cdac…
https://git.kernel.org/stable/c/a63d99873547d8b39…
https://git.kernel.org/stable/c/f1c71b4bd721a4ea2…
https://git.kernel.org/stable/c/9e7b49ce4f9d0cb5b…
https://git.kernel.org/stable/c/faa9059631d3491d6…
https://git.kernel.org/stable/c/d63851049f412cdfa…
https://git.kernel.org/stable/c/31d8df3f303c3ae91…
https://git.kernel.org/stable/c/a6aeb739974ec73e5…
https://lists.debian.org/debian-lts-announce/2025…
https://lists.debian.org/debian-lts-announce/2025…

Impacted products

2 products

Vendor	Product	Version
Linux	Linux	Affected: 942e443127e928a5631c3d5102aca8c8b3c2dd98 , < 93799fb988757cdacf19acba57807746c00378e6 (git) Affected: 942e443127e928a5631c3d5102aca8c8b3c2dd98 , < a63d99873547d8b39eb2f6db79dd235761e7098a (git) Affected: 942e443127e928a5631c3d5102aca8c8b3c2dd98 , < f1c71b4bd721a4ea21da408806964b10468623f2 (git) Affected: 942e443127e928a5631c3d5102aca8c8b3c2dd98 , < 9e7b49ce4f9d0cb5b6e87db9e07a2fb9e754b0dd (git) Affected: 942e443127e928a5631c3d5102aca8c8b3c2dd98 , < faa9059631d3491d699c69ecf512de9e1a3d6649 (git) Affected: 942e443127e928a5631c3d5102aca8c8b3c2dd98 , < d63851049f412cdfadaeef7a7eaef5031d11c1e9 (git) Affected: 942e443127e928a5631c3d5102aca8c8b3c2dd98 , < 31d8df3f303c3ae9115230820977ef8c35c88808 (git) Affected: 942e443127e928a5631c3d5102aca8c8b3c2dd98 , < a6aeb739974ec73e5217c75a7c008a688d3d5cf1 (git)
Linux	Linux	Affected: 3.12 Unaffected: 0 , < 3.12 (semver) Unaffected: 5.4.294 , ≤ 5.4.* (semver) Unaffected: 5.10.238 , ≤ 5.10.* (semver) Unaffected: 5.15.183 , ≤ 5.15.* (semver) Unaffected: 6.1.139 , ≤ 6.1.* (semver) Unaffected: 6.6.91 , ≤ 6.6.* (semver) Unaffected: 6.12.29 , ≤ 6.12.* (semver) Unaffected: 6.14.7 , ≤ 6.14.* (semver) Unaffected: 6.15 , ≤ * (original_commit_for_fix)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2025-11-03T19:58:09.408Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "url": "https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html"
          },
          {
            "url": "https://lists.debian.org/debian-lts-announce/2025/08/msg00010.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "kernel/params.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "93799fb988757cdacf19acba57807746c00378e6",
              "status": "affected",
              "version": "942e443127e928a5631c3d5102aca8c8b3c2dd98",
              "versionType": "git"
            },
            {
              "lessThan": "a63d99873547d8b39eb2f6db79dd235761e7098a",
              "status": "affected",
              "version": "942e443127e928a5631c3d5102aca8c8b3c2dd98",
              "versionType": "git"
            },
            {
              "lessThan": "f1c71b4bd721a4ea21da408806964b10468623f2",
              "status": "affected",
              "version": "942e443127e928a5631c3d5102aca8c8b3c2dd98",
              "versionType": "git"
            },
            {
              "lessThan": "9e7b49ce4f9d0cb5b6e87db9e07a2fb9e754b0dd",
              "status": "affected",
              "version": "942e443127e928a5631c3d5102aca8c8b3c2dd98",
              "versionType": "git"
            },
            {
              "lessThan": "faa9059631d3491d699c69ecf512de9e1a3d6649",
              "status": "affected",
              "version": "942e443127e928a5631c3d5102aca8c8b3c2dd98",
              "versionType": "git"
            },
            {
              "lessThan": "d63851049f412cdfadaeef7a7eaef5031d11c1e9",
              "status": "affected",
              "version": "942e443127e928a5631c3d5102aca8c8b3c2dd98",
              "versionType": "git"
            },
            {
              "lessThan": "31d8df3f303c3ae9115230820977ef8c35c88808",
              "status": "affected",
              "version": "942e443127e928a5631c3d5102aca8c8b3c2dd98",
              "versionType": "git"
            },
            {
              "lessThan": "a6aeb739974ec73e5217c75a7c008a688d3d5cf1",
              "status": "affected",
              "version": "942e443127e928a5631c3d5102aca8c8b3c2dd98",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "kernel/params.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "3.12"
            },
            {
              "lessThan": "3.12",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.294",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.238",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.183",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.139",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.91",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.12.*",
              "status": "unaffected",
              "version": "6.12.29",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.14.*",
              "status": "unaffected",
              "version": "6.14.7",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.15",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.294",
                  "versionStartIncluding": "3.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.238",
                  "versionStartIncluding": "3.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.183",
                  "versionStartIncluding": "3.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.139",
                  "versionStartIncluding": "3.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.91",
                  "versionStartIncluding": "3.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.12.29",
                  "versionStartIncluding": "3.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.14.7",
                  "versionStartIncluding": "3.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.15",
                  "versionStartIncluding": "3.12",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nmodule: ensure that kobject_put() is safe for module type kobjects\n\nIn \u0027lookup_or_create_module_kobject()\u0027, an internal kobject is created\nusing \u0027module_ktype\u0027. So call to \u0027kobject_put()\u0027 on error handling\npath causes an attempt to use an uninitialized completion pointer in\n\u0027module_kobject_release()\u0027. In this scenario, we just want to release\nkobject without an extra synchronization required for a regular module\nunloading process, so adding an extra check whether \u0027complete()\u0027 is\nactually required makes \u0027kobject_put()\u0027 safe."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-05-11T21:19:16.657Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/93799fb988757cdacf19acba57807746c00378e6"
        },
        {
          "url": "https://git.kernel.org/stable/c/a63d99873547d8b39eb2f6db79dd235761e7098a"
        },
        {
          "url": "https://git.kernel.org/stable/c/f1c71b4bd721a4ea21da408806964b10468623f2"
        },
        {
          "url": "https://git.kernel.org/stable/c/9e7b49ce4f9d0cb5b6e87db9e07a2fb9e754b0dd"
        },
        {
          "url": "https://git.kernel.org/stable/c/faa9059631d3491d699c69ecf512de9e1a3d6649"
        },
        {
          "url": "https://git.kernel.org/stable/c/d63851049f412cdfadaeef7a7eaef5031d11c1e9"
        },
        {
          "url": "https://git.kernel.org/stable/c/31d8df3f303c3ae9115230820977ef8c35c88808"
        },
        {
          "url": "https://git.kernel.org/stable/c/a6aeb739974ec73e5217c75a7c008a688d3d5cf1"
        }
      ],
      "title": "module: ensure that kobject_put() is safe for module type kobjects",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2025-37995",
    "datePublished": "2025-05-29T13:15:54.095Z",
    "dateReserved": "2025-04-16T04:51:23.976Z",
    "dateUpdated": "2026-05-11T21:19:16.657Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CERTFR-2025-AVI-0650

Solutions

CVE-2025-37970 (GCVE-0-2025-37970)

CVE-2025-37982 (GCVE-0-2025-37982)

CVE-2025-37983 (GCVE-0-2025-37983)

CVE-2025-37985 (GCVE-0-2025-37985)

CVE-2025-37989 (GCVE-0-2025-37989)

CVE-2025-37990 (GCVE-0-2025-37990)

CVE-2025-37991 (GCVE-0-2025-37991)

CVE-2025-37992 (GCVE-0-2025-37992)

CVE-2025-37994 (GCVE-0-2025-37994)

CVE-2025-37995 (GCVE-0-2025-37995)

Tags

Sightings

Nomenclature