CVE-2025-37790 | THREATINT

Description

In the Linux kernel, the following vulnerability has been resolved: net: mctp: Set SOCK_RCU_FREE Bind lookup runs under RCU, so ensure that a socket doesn't go away in the middle of a lookup.

PUBLISHED Reserved 2025-04-16 | Published 2025-05-01 | Updated 2026-05-11 | Assigner Linux

Product status

Default status

unaffected

833ef3b91de692ef33b800bca6b1569c39dece74 (git) before 5c1313b93c8c2e3904a48aa88e2fa1db28c607ae

affected

833ef3b91de692ef33b800bca6b1569c39dece74 (git) before b9764ebebb007249fb733a131b6110ff333b6616

affected

833ef3b91de692ef33b800bca6b1569c39dece74 (git) before a8a3b61ce140e2b0a72a779e8d70f60c0cf1e47a

affected

833ef3b91de692ef33b800bca6b1569c39dece74 (git) before 3f899bd6dd56ddc46509b526e23a8f0a97712a6d

affected

833ef3b91de692ef33b800bca6b1569c39dece74 (git) before e3b5edbdb45924a7d4206d13868a2aac71f1e53d

affected

833ef3b91de692ef33b800bca6b1569c39dece74 (git) before 52024cd6ec71a6ca934d0cc12452bd8d49850679

affected

Default status

affected

5.15

affected

Any version before 5.15

unaffected

5.15.181 (semver)

unaffected

6.1.135 (semver)

unaffected

6.6.88 (semver)

unaffected

6.12.25 (semver)

unaffected

6.14.4 (semver)

unaffected

6.15 (original_commit_for_fix)

unaffected

References

lists.debian.org/debian-lts-announce/2025/05/msg00045.html

git.kernel.org/...c/5c1313b93c8c2e3904a48aa88e2fa1db28c607ae

git.kernel.org/...c/b9764ebebb007249fb733a131b6110ff333b6616

git.kernel.org/...c/a8a3b61ce140e2b0a72a779e8d70f60c0cf1e47a

git.kernel.org/...c/3f899bd6dd56ddc46509b526e23a8f0a97712a6d

git.kernel.org/...c/e3b5edbdb45924a7d4206d13868a2aac71f1e53d

git.kernel.org/...c/52024cd6ec71a6ca934d0cc12452bd8d49850679

cve.org (CVE-2025-37790)

nvd.nist.gov (CVE-2025-37790)

Download JSON