We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2025-37974

s390/pci: Fix missing check for zpci_create_device() error return



Description

In the Linux kernel, the following vulnerability has been resolved: s390/pci: Fix missing check for zpci_create_device() error return The zpci_create_device() function returns an error pointer that needs to be checked before dereferencing it as a struct zpci_dev pointer. Add the missing check in __clp_add() where it was missed when adding the scan_list in the fixed commit. Simply not adding the device to the scan list results in the previous behavior.

Reserved 2025-04-16 | Published 2025-05-20 | Updated 2025-05-26 | Assigner Linux

Product status

Default status
unaffected

1f3b309108fd0660ea8614a72328ba866ccd3378 before be54b750c333a9db7c3b3686846bb06b07b011fe
affected

0467cdde8c4320bbfdb31a8cff1277b202f677fc before 2769b718e164df983c20c314b263a71a699be6cd
affected

0467cdde8c4320bbfdb31a8cff1277b202f677fc before 42420c50c68f3e95e90de2479464f420602229fc
affected

Default status
affected

6.13
affected

Any version before 6.13
unaffected

6.12.29
unaffected

6.14.7
unaffected

6.15
unaffected

References

git.kernel.org/...c/be54b750c333a9db7c3b3686846bb06b07b011fe

git.kernel.org/...c/2769b718e164df983c20c314b263a71a699be6cd

git.kernel.org/...c/42420c50c68f3e95e90de2479464f420602229fc

cve.org (CVE-2025-37974)

nvd.nist.gov (CVE-2025-37974)

Download JSON

Share this page
https://cve.threatint.eu/CVE/CVE-2025-37974

Support options

Helpdesk Chat, Email, Knowledgebase
© Copyright 2025 THREATINT
Made in Cyprus with +
 System status
Find us on
Data Privacy
Terms of Use
Logo BSI Allianz für Cyber-Sicherheit
Error loading Crisp.chat. Please check your web content filter and browser plugins.