CVE-2025-37844

In the Linux kernel, the following vulnerability has been resolved: cifs: avoid NULL pointer dereference in dbg call cifs_server_dbg() implies server to be non-NULL so move call under condition to avoid NULL pointer dereference. Found by Linux Verification Center (linuxtesting.org) with SVACE.

CVSS

No CVSS.

References

Link	Resource
https://git.kernel.org/stable/c/20048e658652e731f5cadf4a695925e570ca0ff9
https://git.kernel.org/stable/c/6c14ee6af8f1f188b668afd6d003f7516a507b08
https://git.kernel.org/stable/c/864ba5c651b03830f36f0906c21af05b15c1aaa6
https://git.kernel.org/stable/c/9c9000cb91b986eb7f75835340c67857ab97c09b
https://git.kernel.org/stable/c/b2a1833e1c63e2585867ebeaf4dd41494dcede4b
https://git.kernel.org/stable/c/b4885bd5935bb26f0a414ad55679a372e53f9b9b
https://git.kernel.org/stable/c/ba3ce6c60cd5db258687dfeba9fc608f5e7cadf3
https://git.kernel.org/stable/c/e0717385f5c51e290c2cd2ad4699a778316b5132
https://lists.debian.org/debian-lts-announce/2025/05/msg00030.html
https://lists.debian.org/debian-lts-announce/2025/05/msg00045.html

Configurations

No configuration.

History

03 Nov 2025, 20:18

Type	Values Removed	Values Added
References		() https://lists.debian.org/debian-lts-announce/2025/05/msg00030.html - () https://lists.debian.org/debian-lts-announce/2025/05/msg00045.html -

12 May 2025, 17:32

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-05-09 07:16

Updated : 2025-11-03 20:18

NVD link : CVE-2025-37844

Mitre link : CVE-2025-37844

CVE.ORG link : CVE-2025-37844

JSON object : View

Products Affected

No product.

CWE

No CWE.

{"id": "CVE-2025-37844", "cveTags": [], "metrics": {}, "published": "2025-05-09T07:16:05.190", "references": [{"url": "https://git.kernel.org/stable/c/20048e658652e731f5cadf4a695925e570ca0ff9", "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}, {"url": "https://git.kernel.org/stable/c/6c14ee6af8f1f188b668afd6d003f7516a507b08", "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}, {"url": "https://git.kernel.org/stable/c/864ba5c651b03830f36f0906c21af05b15c1aaa6", "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}, {"url": "https://git.kernel.org/stable/c/9c9000cb91b986eb7f75835340c67857ab97c09b", "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}, {"url": "https://git.kernel.org/stable/c/b2a1833e1c63e2585867ebeaf4dd41494dcede4b", "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}, {"url": "https://git.kernel.org/stable/c/b4885bd5935bb26f0a414ad55679a372e53f9b9b", "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}, {"url": "https://git.kernel.org/stable/c/ba3ce6c60cd5db258687dfeba9fc608f5e7cadf3", "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}, {"url": "https://git.kernel.org/stable/c/e0717385f5c51e290c2cd2ad4699a778316b5132", "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}, {"url": "https://lists.debian.org/debian-lts-announce/2025/05/msg00030.html", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://lists.debian.org/debian-lts-announce/2025/05/msg00045.html", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Awaiting Analysis", "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ncifs: avoid NULL pointer dereference in dbg call\n\ncifs_server_dbg() implies server to be non-NULL so\nmove call under condition to avoid NULL pointer dereference.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE."}, {"lang": "es", "value": "En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: cifs: evitar la desreferencia de puntero nulo en la llamada a dbg. cifs_server_dbg() implica que el servidor no es nulo, por lo que se mueve la llamada bajo condici\u00f3n para evitar la desreferencia de puntero nulo. Encontrada por el Centro de Verificaci\u00f3n de Linux (linuxtesting.org) con SVACE."}], "lastModified": "2025-11-03T20:18:38.387", "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}