CVE-2025-37933

MEDIUM

Linux Kernel 6.4-6.6.89, 6.7-6.12.27, 6.13-6.14.5 - Use-After-Free in octeon_ep Device Reboot Handler

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: octeon_ep: Fix host hang issue during device reboot When the host loses heartbeat messages from the device, the driver calls the device-specific ndo_stop function, which frees the resources. If the driver is unloaded in this scenario, it calls ndo_stop again, attempting to free resources that have already been freed, leading to a host hang issue. To resolve this, dev_close should be called instead of the device-specific stop function.dev_close internally calls ndo_stop to stop the network interface and performs additional cleanup tasks. During the driver unload process, if the device is already down, ndo_stop is not called.

References (4)

Core 4

Core References

Patch

https://git.kernel.org/stable/c/7e1ca1bed3f66e00377f7d2147be390144924276

Patch

https://git.kernel.org/stable/c/c8d788f800f83b94d9db8b3dacc1d26be38a6ef4

Patch

https://git.kernel.org/stable/c/6d1052423518e7d0aece9af5e77bbc324face8f1

Patch

https://git.kernel.org/stable/c/34f42736b325287a7b2ce37e415838f539767bda

Scores

CVSS v3 5.5

EPSS 0.0016

EPSS Percentile 5.8%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-415

Status published

Products (15)

linux/Kernel 6.13.0 - 6.14.6linux

linux/Kernel 6.4.0 - 6.6.90linux

linux/Kernel 6.7.0 - 6.12.28linux

Linux/Linux < 6.4

Linux/Linux 5cb96c29aa0ea359e4f5d30585538dc6a847d69d - 34f42736b325287a7b2ce37e415838f539767bda

Linux/Linux 5cb96c29aa0ea359e4f5d30585538dc6a847d69d - 6d1052423518e7d0aece9af5e77bbc324face8f1

Linux/Linux 5cb96c29aa0ea359e4f5d30585538dc6a847d69d - 7e1ca1bed3f66e00377f7d2147be390144924276

Linux/Linux 5cb96c29aa0ea359e4f5d30585538dc6a847d69d - c8d788f800f83b94d9db8b3dacc1d26be38a6ef4

Linux/Linux 6.12.28 - 6.12.*

Linux/Linux 6.14.6 - 6.14.*

... and 5 more

Published May 20, 2025

Tracked Since Feb 18, 2026