CVE-2025-37758

MEDIUM

Linux Kernel - NULL Pointer Dereference in pata_pxa pxa_ata_probe

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: ata: pata_pxa: Fix potential NULL pointer dereference in pxa_ata_probe() devm_ioremap() returns NULL on error. Currently, pxa_ata_probe() does not check for this case, which can result in a NULL pointer dereference. Add NULL check after devm_ioremap() to prevent this issue.

References (10)

Core 10

Core References

Mailing List

https://lists.debian.org/debian-lts-announce/2025/05/msg00045.html

Patch

https://git.kernel.org/stable/c/a551f75401793ba8075d7f46ffc931ce5151f03f

Patch

https://git.kernel.org/stable/c/17d5e6e915fad5a261db3698c9c5bbe702102d7c

Patch

https://git.kernel.org/stable/c/d0d720f9282839b9db625a376c02a1426a16b0ae

Patch

https://git.kernel.org/stable/c/2dc53c7a0c1f57b082931facafa804a7ca32a9a6

Patch

https://git.kernel.org/stable/c/5b09bf6243b0bc0ae58bd9efdf6f0de5546f8d06

Patch

https://git.kernel.org/stable/c/ee2b0301d6bfe16b35d57947687c664ecb815775

Patch

https://git.kernel.org/stable/c/c022287f6e599422511aa227dc6da37b58d9ceac

Patch

https://git.kernel.org/stable/c/2ba9e4c69207777bb0775c7c091800ecd69de144

Patch

https://git.kernel.org/stable/c/ad320e408a8c95a282ab9c05cdf0c9b95e317985

Scores

CVSS v3 5.5

EPSS 0.0007

EPSS Percentile 20.4%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-476

Status published

Products (31)

debian/debian_linux 11.0

linux/Kernel 2.6.36 - 5.4.293linux

linux/Kernel 5.11.0 - 5.15.181linux

linux/Kernel 5.16.0 - 6.1.135linux

linux/Kernel 5.5.0 - 5.10.237linux

linux/Kernel 6.13.0 - 6.13.12linux

linux/Kernel 6.14.0 - 6.14.3linux

linux/Kernel 6.2.0 - 6.6.88linux

linux/Kernel 6.7.0 - 6.12.24linux

Linux/Linux < 2.6.36

... and 21 more

Published May 01, 2025

Tracked Since Feb 18, 2026