CVE-2025-37830

May 8, 2025, 2:39 p.m.

None
No Score

Description

In the Linux kernel, the following vulnerability has been resolved: cpufreq: scmi: Fix null-ptr-deref in scmi_cpufreq_get_rate() cpufreq_cpu_get_raw() can return NULL when the target CPU is not present in the policy->cpus mask. scmi_cpufreq_get_rate() does not check for this case, which results in a NULL pointer dereference. Add NULL check after cpufreq_cpu_get_raw() to prevent this issue.

Product(s) Impacted

Vendor Product Versions
Linux
  • Kernel
  • *

Weaknesses

Common security weaknesses mapped to this vulnerability.

*CPE(s)

Affected systems and software identified for this CVE.

Type Vendor Product Version Update Edition Language Software Edition Target Software Target Hardware Other Information
a linux kernel / / / / / / / /

References

https://git.kernel.org/stable/c/484d3f15cc6cbaa52541d6259778e715b2c83c54
https://git.kernel.org/stable/c/4e3d1c1925d8e752992cd893d03d974e6807ac16
https://git.kernel.org/stable/c/7ccfadfb2562337b4f0462a86a9746a6eea89718
https://git.kernel.org/stable/c/cfaca93b8fe317b7faa9af732e0ba8c9081fa018
https://git.kernel.org/stable/c/ea834c90aa7cc80a1b456f7a91432734d5087d16
https://git.kernel.org/stable/c/f9c5423855e3687262d881aeee5cfb3bc8577bff

Tags

416baaa9-dc9f-4396-8d5f-8c081fb06d67
2025-05-08
CVE-2025-37830

Timeline

Published: May 8, 2025, 7:15 a.m.
Last Modified: May 8, 2025, 2:39 p.m.

Status : Awaiting Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

416baaa9-dc9f-4396-8d5f-8c081fb06d67

*Disclaimer: Some vulnerabilities do not have an associated CPE. To enhance the data, we use AI to infer CPEs based on CVE details. This is an automated process and might not always be accurate.