CVE-2025-37755

MEDIUM EPSS 4.5%
Published May 1, 20251y ago · Modified Jun 17, 20262w ago
5.5 CVSS 3.1
Medium
Find Similar
Published May 1, 2025 1y ago
Last Modified Jun 17, 2026 2w ago

Description

In the Linux kernel, the following vulnerability has been resolved: net: libwx: handle page_pool_dev_alloc_pages error page_pool_dev_alloc_pages could return NULL. There was a WARN_ON(!page) but it would still proceed to use the NULL pointer and then crash. This is similar to commit 001ba0902046 ("net: fec: handle page_pool_dev_alloc_pages error"). This is found by our static analysis tool KNighter.

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
4.5% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-476 NULL Pointer Dereference Memory Safety

Affected Products 5

VendorProductVersionRange
linuxlinux_kernel*≥6.3  –  <6.6.88
linuxlinux_kernel*≥6.7  –  <6.12.24
linuxlinux_kernel*≥6.13  –  <6.13.12
linuxlinux_kernel*≥6.14  –  <6.14.3
linuxlinux_kernel6.15any

References 5

  • git.kernel.org https://git.kernel.org/stable/c/1dd13c60348f515acd8c6f25a561b9c4e3b04fea
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7f1ff1b38a7c8b872382b796023419d87d78c47e
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/90bec7cef8805f9a23145e070dff28a02bb584eb
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ad81d666e114ebf989fc9994d4c93d451dc60056
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c17ef974bfcf1a50818168b47c4606b425a957c4
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/1dd13c60348f515acd8c6f25a561b9c4e3b04fea
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7f1ff1b38a7c8b872382b796023419d87d78c47e
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/90bec7cef8805f9a23145e070dff28a02bb584eb
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ad81d666e114ebf989fc9994d4c93d451dc60056
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c17ef974bfcf1a50818168b47c4606b425a957c4
    Patch