CVE-2025-37790

MEDIUM EPSS 4.6%
Published May 1, 20251y ago · Modified Jun 17, 20261w ago
5.5 CVSS 3.1
Medium
Find Similar
Published May 1, 2025 1y ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: net: mctp: Set SOCK_RCU_FREE Bind lookup runs under RCU, so ensure that a socket doesn't go away in the middle of a lookup.

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
4.6% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Affected Products 8

VendorProductVersionRange
linuxlinux_kernel*≥5.15  –  <5.15.181
linuxlinux_kernel*≥5.16  –  <6.1.135
linuxlinux_kernel*≥6.2  –  <6.6.88
linuxlinux_kernel*≥6.7  –  <6.12.25
linuxlinux_kernel*≥6.13  –  <6.14.4
linuxlinux_kernel6.15any
linuxlinux_kernel6.15any
debiandebian_linux11.0any

References 7

  • git.kernel.org https://git.kernel.org/stable/c/3f899bd6dd56ddc46509b526e23a8f0a97712a6d
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/52024cd6ec71a6ca934d0cc12452bd8d49850679
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/5c1313b93c8c2e3904a48aa88e2fa1db28c607ae
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a8a3b61ce140e2b0a72a779e8d70f60c0cf1e47a
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/b9764ebebb007249fb733a131b6110ff333b6616
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/e3b5edbdb45924a7d4206d13868a2aac71f1e53d
    Patch
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2025/05/msg00045.html
    Mailing ListThird Party Advisory

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/3f899bd6dd56ddc46509b526e23a8f0a97712a6d
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/52024cd6ec71a6ca934d0cc12452bd8d49850679
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/5c1313b93c8c2e3904a48aa88e2fa1db28c607ae
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a8a3b61ce140e2b0a72a779e8d70f60c0cf1e47a
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/b9764ebebb007249fb733a131b6110ff333b6616
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/e3b5edbdb45924a7d4206d13868a2aac71f1e53d
    Patch