CVE-2025-37986

Published: May 20, 2025

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: usb: typec: class: Invalidate USB device pointers on partner unregistration To avoid using invalid USB device pointers after a Type-C partner disconnects, this patch clears the pointers upon partner unregistration. This ensures a clean state for future connections.

Vendor	Product	Versions
Linux	Linux	affected `59de2a56d127890cc610f3896d5fc31887c54ac2 - < 40966fc9939e85677fdb489dfddfa205baaad03b` affected `59de2a56d127890cc610f3896d5fc31887c54ac2 - < 74911338f47c13d1b9470fc50718182bffad42e2` affected `59de2a56d127890cc610f3896d5fc31887c54ac2 - < 66e1a887273c6b89f09bc11a40d0a71d5a081a8e`
Linux	Linux	affected `6.7` unaffected `0 - < 6.7` unaffected `6.12.26 - <= 6.12.` unaffected `6.14.5 - <= 6.14.` unaffected `6.15 - <= *`

References

https://git.kernel.org/stable/c/40966fc9939e85677fdb489dfddfa205baaad03b

https://git.kernel.org/stable/c/74911338f47c13d1b9470fc50718182bffad42e2

https://git.kernel.org/stable/c/66e1a887273c6b89f09bc11a40d0a71d5a081a8e

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-37986

Description

Affected Products

References