CVE-2025-37888

MEDIUM

Linux kernel - Null Pointer Dereference

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix null-ptr-deref in mlx5_create_{inner_,}ttc_table() Add NULL check for mlx5_get_flow_namespace() returns in mlx5_create_inner_ttc_table() and mlx5_create_ttc_table() to prevent NULL pointer dereference.

References (3)

Core 3

Core References

Patch

https://git.kernel.org/stable/c/0b682680b12b08cd62b113ea92b2938195de1dfe

Patch

https://git.kernel.org/stable/c/ecd9d2647ddb4f42a121de648e48659ae1856c39

Patch

https://git.kernel.org/stable/c/91037037ee3d611ce17f39d75f79c7de394b122a

Scores

CVSS v3 5.5

EPSS 0.0022

EPSS Percentile 12.0%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-476

Status published

Products (12)

linux/Kernel 6.10.0 - 6.12.26linux

linux/Kernel 6.13.0 - 6.14.5linux

Linux/Linux < 6.10

Linux/Linux 137f3d50ad2a0f2e1ebe5181d6b32a5541786b99 - 0b682680b12b08cd62b113ea92b2938195de1dfe

Linux/Linux 137f3d50ad2a0f2e1ebe5181d6b32a5541786b99 - 91037037ee3d611ce17f39d75f79c7de394b122a

Linux/Linux 137f3d50ad2a0f2e1ebe5181d6b32a5541786b99 - ecd9d2647ddb4f42a121de648e48659ae1856c39

Linux/Linux 6.10

Linux/Linux 6.12.26 - 6.12.*

Linux/Linux 6.14.5 - 6.14.*

Linux/Linux 6.15

... and 2 more

Published May 09, 2025

Tracked Since Feb 18, 2026