CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

CVE-2025-37910: ptp: ocp: Fix NULL dereference in Adva board SMA sysfs operations

Description

In the Linux kernel, the following vulnerability has been resolved:

ptp: ocp: Fix NULL dereference in Adva board SMA sysfs operations

On Adva boards, SMA sysfs store/get operations can call
__handle_signal_outputs() or __handle_signal_inputs() while the `irig`
and `dcf` pointers are uninitialized, leading to a NULL pointer
dereference in __handle_signal() and causing a kernel crash. Adva boards
don't use `irig` or `dcf` functionality, so add Adva-specific callbacks
`ptp_ocp_sma_adva_set_outputs()` and `ptp_ocp_sma_adva_set_inputs()` that
avoid invoking `irig` or `dcf` input/output routines.

Classification

CVE ID: CVE-2025-37910

Affected Products

Vendor: Linux

Product: Linux

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.02% (probability of being exploited)

EPSS Percentile: 4.26% (scored less or equal to compared to others)

EPSS Date: 2025-06-18 (when was this score calculated)

References

https://nvd.nist.gov/vuln/detail/CVE-2025-37910
https://git.kernel.org/stable/c/8a543d825e78b8d680d8f891381b83fbffdb0bb6
https://git.kernel.org/stable/c/5b349f9cdb4a9daa133bea267dfc0c383628387a
https://git.kernel.org/stable/c/e98386d79a23c57cf179fe4138322e277aa3aa74

Timeline

2025-05-20 16:40:15 UTC
CVE

ptp: ocp: Fix NULL dereference in Adva board SMA sysfs operations