CVE-2025-37841

In the Linux kernel, the following vulnerability has been resolved: pm: cpupower: bench: Prevent NULL dereference on malloc failure If malloc returns NULL due to low memory, 'config' pointer can be NULL. Add a check to prevent NULL dereference.

CVSS

No CVSS.

References

Link	Resource
https://git.kernel.org/stable/c/0e297a02e03dceb2874789ca40bd4e65c5371704
https://git.kernel.org/stable/c/208baa3ec9043a664d9acfb8174b332e6b17fb69
https://git.kernel.org/stable/c/34a9394794b0f97af6afedc0c9ee2012c24b28ed
https://git.kernel.org/stable/c/5e38122aa3fd0f9788186e86a677925bfec0b2d1
https://git.kernel.org/stable/c/79bded9d70142d2a11d931fc029afece471641db
https://git.kernel.org/stable/c/87b9f0867c0afa7e892f4b30c36cff6bf2707f85
https://git.kernel.org/stable/c/942a4b97fc77516678b1d8af1521ff9a94c13b3e
https://git.kernel.org/stable/c/ceec06f464d5cfc0ba966225f7d50506ceb62242
https://git.kernel.org/stable/c/f8d28fa305b78c5d1073b63f26db265ba8291ae1
https://lists.debian.org/debian-lts-announce/2025/05/msg00030.html
https://lists.debian.org/debian-lts-announce/2025/05/msg00045.html

Configurations

No configuration.

History

03 Nov 2025, 20:18

Type	Values Removed	Values Added
References		() https://lists.debian.org/debian-lts-announce/2025/05/msg00030.html - () https://lists.debian.org/debian-lts-announce/2025/05/msg00045.html -

12 May 2025, 17:32

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-05-09 07:16

Updated : 2025-11-03 20:18

NVD link : CVE-2025-37841

Mitre link : CVE-2025-37841

CVE.ORG link : CVE-2025-37841

JSON object : View

Products Affected

No product.

CWE

No CWE.

{"id": "CVE-2025-37841", "cveTags": [], "metrics": {}, "published": "2025-05-09T07:16:04.837", "references": [{"url": "https://git.kernel.org/stable/c/0e297a02e03dceb2874789ca40bd4e65c5371704", "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}, {"url": "https://git.kernel.org/stable/c/208baa3ec9043a664d9acfb8174b332e6b17fb69", "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}, {"url": "https://git.kernel.org/stable/c/34a9394794b0f97af6afedc0c9ee2012c24b28ed", "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}, {"url": "https://git.kernel.org/stable/c/5e38122aa3fd0f9788186e86a677925bfec0b2d1", "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}, {"url": "https://git.kernel.org/stable/c/79bded9d70142d2a11d931fc029afece471641db", "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}, {"url": "https://git.kernel.org/stable/c/87b9f0867c0afa7e892f4b30c36cff6bf2707f85", "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}, {"url": "https://git.kernel.org/stable/c/942a4b97fc77516678b1d8af1521ff9a94c13b3e", "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}, {"url": "https://git.kernel.org/stable/c/ceec06f464d5cfc0ba966225f7d50506ceb62242", "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}, {"url": "https://git.kernel.org/stable/c/f8d28fa305b78c5d1073b63f26db265ba8291ae1", "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}, {"url": "https://lists.debian.org/debian-lts-announce/2025/05/msg00030.html", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://lists.debian.org/debian-lts-announce/2025/05/msg00045.html", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Awaiting Analysis", "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\npm: cpupower: bench: Prevent NULL dereference on malloc failure\n\nIf malloc returns NULL due to low memory, 'config' pointer can be NULL.\nAdd a check to prevent NULL dereference."}, {"lang": "es", "value": "En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: pm: cpupower: bench: Evitar la desreferenciaci\u00f3n de valores NULL en caso de fallo de malloc. Si malloc devuelve NULL debido a poca memoria, el puntero 'config' puede ser NULL. Se ha a\u00f1adido una comprobaci\u00f3n para evitar la desreferenciaci\u00f3n de valores NULL."}], "lastModified": "2025-11-03T20:18:38.270", "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}