CVE-2025-37773 | THREATINT

Description

In the Linux kernel, the following vulnerability has been resolved: virtiofs: add filesystem context source name check In certain scenarios, for example, during fuzz testing, the source name may be NULL, which could lead to a kernel panic. Therefore, an extra check for the source name should be added.

Reserved 2025-04-16 | Published 2025-05-01 | Updated 2025-05-26 | Assigner Linux

Product status

Default status

unaffected

a62a8ef9d97da23762a588592c8b8eb50a8deb6a before b84f13fdad10a543e2e65bab7e81b3f0bceabd67

affected

a62a8ef9d97da23762a588592c8b8eb50a8deb6a before 9d6dcf18a1b49990295ac8a05fd9bdfd27ccbf88

affected

a62a8ef9d97da23762a588592c8b8eb50a8deb6a before 5ee09cdaf3414f6c92960714af46d3d90eede2f3

affected

a62a8ef9d97da23762a588592c8b8eb50a8deb6a before 599d1e2a6aecc44acf22fe7ea6f5e84a7e526abe

affected

a62a8ef9d97da23762a588592c8b8eb50a8deb6a before f6ec52710dc5e156b774cbef5d0f5c99b1c53a80

affected

a62a8ef9d97da23762a588592c8b8eb50a8deb6a before c3e31d613951c299487844c4d1686a933e8ee291

affected

a62a8ef9d97da23762a588592c8b8eb50a8deb6a before a648d80f8d9b208beee03a2d9aa690cfacf1d41e

affected

a62a8ef9d97da23762a588592c8b8eb50a8deb6a before a94fd938df2b1628da66b498aa0eeb89593bc7a2

affected

Default status

affected

5.4

affected

Any version before 5.4

unaffected

5.4.293

unaffected

5.10.237

unaffected

5.15.181

unaffected

6.1.135

unaffected

6.6.88

unaffected

6.12.25

unaffected

6.14.4

unaffected

6.15

unaffected

References

git.kernel.org/...c/b84f13fdad10a543e2e65bab7e81b3f0bceabd67

git.kernel.org/...c/9d6dcf18a1b49990295ac8a05fd9bdfd27ccbf88

git.kernel.org/...c/5ee09cdaf3414f6c92960714af46d3d90eede2f3

git.kernel.org/...c/599d1e2a6aecc44acf22fe7ea6f5e84a7e526abe

git.kernel.org/...c/f6ec52710dc5e156b774cbef5d0f5c99b1c53a80

git.kernel.org/...c/c3e31d613951c299487844c4d1686a933e8ee291

git.kernel.org/...c/a648d80f8d9b208beee03a2d9aa690cfacf1d41e

git.kernel.org/...c/a94fd938df2b1628da66b498aa0eeb89593bc7a2

cve.org (CVE-2025-37773)

nvd.nist.gov (CVE-2025-37773)

Download JSON