Description

In the Linux kernel, the following vulnerability has been resolved: pds_core: make wait_context part of q_info Make the wait_context a full part of the q_info struct rather than a stack variable that goes away after pdsc_adminq_post() is done so that the context is still available after the wait loop has given up. There was a case where a slow development firmware caused the adminq request to time out, but then later the FW finally finished the request and sent the interrupt. The handler tried to complete_all() the completion context that had been created on the stack in pdsc_adminq_post() but no longer existed. This caused bad pointer usage, kernel crashes, and much wailing and gnashing of teeth.

INFO

Published Date :

2025-05-09T06:45:48.810Z

Last Modified :

2025-05-26T05:23:03.001Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2025-37886 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-37886.

URL Resource
https://git.kernel.org/stable/c/1d7c4b2b0bbfb09b55b2dc0e2355d7936bf89381 cve-icon cve-icon
https://git.kernel.org/stable/c/3f77c3dfffc7063428b100c4945ca2a7a8680380 cve-icon cve-icon
https://git.kernel.org/stable/c/520f012fe75fb8efc9f16a57ef929a7a2115d892 cve-icon cve-icon
https://git.kernel.org/stable/c/66d7702b42ffdf0dce4808626088268a4e905ca6 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025050945-CVE-2025-37886-cab3@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2025-37886 cve-icon
https://www.cve.org/CVERecord?id=CVE-2025-37886 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact