CVE-2025-37826

Summary

In the Linux kernel, the following vulnerability has been resolved:

scsi: ufs: core: Add NULL check in ufshcd_mcq_compl_pending_transfer()

Add a NULL check for the returned hwq pointer by ufshcd_mcq_req_to_hwq().

This is similar to the fix in commit 74736103fb41 ("scsi: ufs: core: Fix ufshcd_abort_one racing issue").

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxab248643d3d68b30f95ee9c238a5a20a06891204 < eeab6618037be84e438e9d6ed5d9a53502faf81faffected
LinuxLinuxab248643d3d68b30f95ee9c238a5a20a06891204 < 700128d67d57bb1de4251e563ab85202def36c50affected
LinuxLinuxab248643d3d68b30f95ee9c238a5a20a06891204 < 08a966a917fe3d92150fa3cc15793ad5e57051ebaffected
LinuxLinux6.5affected
LinuxLinux0 < 6.5unaffected
LinuxLinux6.12.26 <= 6.12.*unaffected
LinuxLinux6.14.5 <= 6.14.*unaffected
LinuxLinux6.15 <= *unaffected

Weaknesses

References