CVE-2025-37755

Published: May 1, 2025

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: net: libwx: handle page_pool_dev_alloc_pages error page_pool_dev_alloc_pages could return NULL. There was a WARN_ON(!page) but it would still proceed to use the NULL pointer and then crash. This is similar to commit 001ba0902046 ("net: fec: handle page_pool_dev_alloc_pages error"). This is found by our static analysis tool KNighter.

Vendor	Product	Versions
Linux	Linux	affected `3c47e8ae113a68da47987750d9896e325d0aeedd - < c17ef974bfcf1a50818168b47c4606b425a957c4` affected `3c47e8ae113a68da47987750d9896e325d0aeedd - < ad81d666e114ebf989fc9994d4c93d451dc60056` affected `3c47e8ae113a68da47987750d9896e325d0aeedd - < 1dd13c60348f515acd8c6f25a561b9c4e3b04fea` affected `3c47e8ae113a68da47987750d9896e325d0aeedd - < 90bec7cef8805f9a23145e070dff28a02bb584eb` affected `3c47e8ae113a68da47987750d9896e325d0aeedd - < 7f1ff1b38a7c8b872382b796023419d87d78c47e`
Linux	Linux	affected `6.3` unaffected `0 - < 6.3` unaffected `6.6.88 - <= 6.6.` unaffected `6.12.24 - <= 6.12.` unaffected `6.13.12 - <= 6.13.*` +2 more versions

References

https://git.kernel.org/stable/c/c17ef974bfcf1a50818168b47c4606b425a957c4

https://git.kernel.org/stable/c/ad81d666e114ebf989fc9994d4c93d451dc60056

https://git.kernel.org/stable/c/1dd13c60348f515acd8c6f25a561b9c4e3b04fea

https://git.kernel.org/stable/c/90bec7cef8805f9a23145e070dff28a02bb584eb

https://git.kernel.org/stable/c/7f1ff1b38a7c8b872382b796023419d87d78c47e

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-37755

Description

Affected Products

References