CVE-2025-37994

Summary

In the Linux kernel, the following vulnerability has been resolved:

usb: typec: ucsi: displayport: Fix NULL pointer access

This patch ensures that the UCSI driver waits for all pending tasks in the ucsi_displayport_work workqueue to finish executing before proceeding with the partner removal.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxaf8622f6a585d8d82b11cd7987e082861fd0edd3 < 9dda1e2a666a8a32ce0f153b5dee05c7351f1020affected
LinuxLinuxaf8622f6a585d8d82b11cd7987e082861fd0edd3 < a9931f1b52b2d0bf3952e003fd5901ea7eb851edaffected
LinuxLinuxaf8622f6a585d8d82b11cd7987e082861fd0edd3 < 7804c4d63edfdd5105926cc291e806e8f4ce01b5affected
LinuxLinuxaf8622f6a585d8d82b11cd7987e082861fd0edd3 < 076ab0631ed4928905736f1701e25f1e722bc086affected
LinuxLinuxaf8622f6a585d8d82b11cd7987e082861fd0edd3 < 14f298c52188c34acde9760bf5abc669c5c36fdbaffected
LinuxLinuxaf8622f6a585d8d82b11cd7987e082861fd0edd3 < 5ad298d6d4aebe1229adba6427e417e89a5208d8affected
LinuxLinuxaf8622f6a585d8d82b11cd7987e082861fd0edd3 < e9b63faf5c97deb43fc39a52edbc39d626cc14bfaffected
LinuxLinuxaf8622f6a585d8d82b11cd7987e082861fd0edd3 < 312d79669e71283d05c05cc49a1a31e59e3d9e0eaffected
LinuxLinux5.2affected
LinuxLinux0 < 5.2unaffected
LinuxLinux5.4.294 <= 5.4.*unaffected
LinuxLinux5.10.238 <= 5.10.*unaffected
LinuxLinux5.15.183 <= 5.15.*unaffected
LinuxLinux6.1.139 <= 6.1.*unaffected
LinuxLinux6.6.91 <= 6.6.*unaffected
LinuxLinux6.12.29 <= 6.12.*unaffected
LinuxLinux6.14.7 <= 6.14.*unaffected
LinuxLinux6.15 <= *unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

References