CVE-2025-37773

Summary

In the Linux kernel, the following vulnerability has been resolved:

virtiofs: add filesystem context source name check

In certain scenarios, for example, during fuzz testing, the source name may be NULL, which could lead to a kernel panic. Therefore, an extra check for the source name should be added.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxa62a8ef9d97da23762a588592c8b8eb50a8deb6a < b84f13fdad10a543e2e65bab7e81b3f0bceabd67affected
LinuxLinuxa62a8ef9d97da23762a588592c8b8eb50a8deb6a < 9d6dcf18a1b49990295ac8a05fd9bdfd27ccbf88affected
LinuxLinuxa62a8ef9d97da23762a588592c8b8eb50a8deb6a < 5ee09cdaf3414f6c92960714af46d3d90eede2f3affected
LinuxLinuxa62a8ef9d97da23762a588592c8b8eb50a8deb6a < 599d1e2a6aecc44acf22fe7ea6f5e84a7e526abeaffected
LinuxLinuxa62a8ef9d97da23762a588592c8b8eb50a8deb6a < f6ec52710dc5e156b774cbef5d0f5c99b1c53a80affected
LinuxLinuxa62a8ef9d97da23762a588592c8b8eb50a8deb6a < c3e31d613951c299487844c4d1686a933e8ee291affected
LinuxLinuxa62a8ef9d97da23762a588592c8b8eb50a8deb6a < a648d80f8d9b208beee03a2d9aa690cfacf1d41eaffected
LinuxLinuxa62a8ef9d97da23762a588592c8b8eb50a8deb6a < a94fd938df2b1628da66b498aa0eeb89593bc7a2affected
LinuxLinux5.4affected
LinuxLinux0 < 5.4unaffected
LinuxLinux5.4.293 <= 5.4.*unaffected
LinuxLinux5.10.237 <= 5.10.*unaffected
LinuxLinux5.15.181 <= 5.15.*unaffected
LinuxLinux6.1.135 <= 6.1.*unaffected
LinuxLinux6.6.88 <= 6.6.*unaffected
LinuxLinux6.12.25 <= 6.12.*unaffected
LinuxLinux6.14.4 <= 6.14.*unaffected
LinuxLinux6.15 <= *unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

References