CVE-2025-37758

MEDIUM EPSS 5.3%
Published May 1, 20251y ago · Modified Jun 17, 20261w ago
5.5 CVSS 3.1
Medium
Find Similar
Published May 1, 2025 1y ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: ata: pata_pxa: Fix potential NULL pointer dereference in pxa_ata_probe() devm_ioremap() returns NULL on error. Currently, pxa_ata_probe() does not check for this case, which can result in a NULL pointer dereference. Add NULL check after devm_ioremap() to prevent this issue.

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
5.3% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-476 NULL Pointer Dereference Memory Safety

Affected Products 10

VendorProductVersionRange
linuxlinux_kernel*≥2.6.36  –  <5.4.293
linuxlinux_kernel*≥5.5  –  <5.10.237
linuxlinux_kernel*≥5.11  –  <5.15.181
linuxlinux_kernel*≥5.16  –  <6.1.135
linuxlinux_kernel*≥6.2  –  <6.6.88
linuxlinux_kernel*≥6.7  –  <6.12.24
linuxlinux_kernel*≥6.13  –  <6.13.12
linuxlinux_kernel*≥6.14  –  <6.14.3
linuxlinux_kernel6.15any
debiandebian_linux11.0any

References 10

  • git.kernel.org https://git.kernel.org/stable/c/17d5e6e915fad5a261db3698c9c5bbe702102d7c
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/2ba9e4c69207777bb0775c7c091800ecd69de144
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/2dc53c7a0c1f57b082931facafa804a7ca32a9a6
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/5b09bf6243b0bc0ae58bd9efdf6f0de5546f8d06
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a551f75401793ba8075d7f46ffc931ce5151f03f
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ad320e408a8c95a282ab9c05cdf0c9b95e317985
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c022287f6e599422511aa227dc6da37b58d9ceac
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d0d720f9282839b9db625a376c02a1426a16b0ae
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ee2b0301d6bfe16b35d57947687c664ecb815775
    Patch
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2025/05/msg00045.html
    Mailing List

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/17d5e6e915fad5a261db3698c9c5bbe702102d7c
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/2ba9e4c69207777bb0775c7c091800ecd69de144
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/2dc53c7a0c1f57b082931facafa804a7ca32a9a6
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/5b09bf6243b0bc0ae58bd9efdf6f0de5546f8d06
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a551f75401793ba8075d7f46ffc931ce5151f03f
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ad320e408a8c95a282ab9c05cdf0c9b95e317985
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c022287f6e599422511aa227dc6da37b58d9ceac
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d0d720f9282839b9db625a376c02a1426a16b0ae
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ee2b0301d6bfe16b35d57947687c664ecb815775
    Patch