CVE-2025-37978

Published: May 20, 2025

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: block: integrity: Do not call set_page_dirty_lock() Placing multiple protection information buffers inside the same page can lead to oopses because set_page_dirty_lock() can't be called from interrupt context. Since a protection information buffer is not backed by a file there is no point in setting its page dirty, there is nothing to synchronize. Drop the call to set_page_dirty_lock() and remove the last argument to bio_integrity_unpin_bvec().

Vendor	Product	Versions
Linux	Linux	affected `492c5d455969fc2e829f26ed4c83487b068f0dd7 - < c38a005e6efb9ddfa06bd8353b82379d6fd5d6c4` affected `492c5d455969fc2e829f26ed4c83487b068f0dd7 - < 9487fc1a10b3aa89feb24e7cedeccaaf63074617` affected `492c5d455969fc2e829f26ed4c83487b068f0dd7 - < 39e160505198ff8c158f11bce2ba19809a756e8b`
Linux	Linux	affected `6.8` unaffected `0 - < 6.8` unaffected `6.12.25 - <= 6.12.` unaffected `6.14.4 - <= 6.14.` unaffected `6.15 - <= *`

References

https://git.kernel.org/stable/c/c38a005e6efb9ddfa06bd8353b82379d6fd5d6c4

https://git.kernel.org/stable/c/9487fc1a10b3aa89feb24e7cedeccaaf63074617

https://git.kernel.org/stable/c/39e160505198ff8c158f11bce2ba19809a756e8b

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-37978

Description

Affected Products

References