{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"cveId":"CVE-2025-37844","assignerOrgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","state":"PUBLISHED","assignerShortName":"Linux","dateReserved":"2025-04-16T04:51:23.953Z","datePublished":"2025-05-09T06:41:53.224Z","dateUpdated":"2026-05-11T21:16:12.230Z"},"containers":{"cna":{"providerMetadata":{"orgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","shortName":"Linux","dateUpdated":"2026-05-11T21:16:12.230Z"},"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\ncifs: avoid NULL pointer dereference in dbg call\n\ncifs_server_dbg() implies server to be non-NULL so\nmove call under condition to avoid NULL pointer dereference.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE."}],"affected":[{"product":"Linux","vendor":"Linux","defaultStatus":"unaffected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["fs/smb/client/smb2misc.c"],"versions":[{"version":"e79b0332ae06b4895dcecddf4bbc5d3917e9383c","lessThan":"ba3ce6c60cd5db258687dfeba9fc608f5e7cadf3","status":"affected","versionType":"git"},{"version":"e79b0332ae06b4895dcecddf4bbc5d3917e9383c","lessThan":"9c9000cb91b986eb7f75835340c67857ab97c09b","status":"affected","versionType":"git"},{"version":"e79b0332ae06b4895dcecddf4bbc5d3917e9383c","lessThan":"b2a1833e1c63e2585867ebeaf4dd41494dcede4b","status":"affected","versionType":"git"},{"version":"e79b0332ae06b4895dcecddf4bbc5d3917e9383c","lessThan":"864ba5c651b03830f36f0906c21af05b15c1aaa6","status":"affected","versionType":"git"},{"version":"e79b0332ae06b4895dcecddf4bbc5d3917e9383c","lessThan":"e0717385f5c51e290c2cd2ad4699a778316b5132","status":"affected","versionType":"git"},{"version":"e79b0332ae06b4895dcecddf4bbc5d3917e9383c","lessThan":"20048e658652e731f5cadf4a695925e570ca0ff9","status":"affected","versionType":"git"},{"version":"e79b0332ae06b4895dcecddf4bbc5d3917e9383c","lessThan":"6c14ee6af8f1f188b668afd6d003f7516a507b08","status":"affected","versionType":"git"},{"version":"e79b0332ae06b4895dcecddf4bbc5d3917e9383c","lessThan":"b4885bd5935bb26f0a414ad55679a372e53f9b9b","status":"affected","versionType":"git"},{"version":"53e83828d352304fec5e19751f38ed8c65e6ec2f","status":"affected","versionType":"git"}]},{"product":"Linux","vendor":"Linux","defaultStatus":"affected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["fs/smb/client/smb2misc.c"],"versions":[{"version":"5.7","status":"affected"},{"version":"0","lessThan":"5.7","status":"unaffected","versionType":"semver"},{"version":"5.10.237","lessThanOrEqual":"5.10.*","status":"unaffected","versionType":"semver"},{"version":"5.15.181","lessThanOrEqual":"5.15.*","status":"unaffected","versionType":"semver"},{"version":"6.1.135","lessThanOrEqual":"6.1.*","status":"unaffected","versionType":"semver"},{"version":"6.6.88","lessThanOrEqual":"6.6.*","status":"unaffected","versionType":"semver"},{"version":"6.12.24","lessThanOrEqual":"6.12.*","status":"unaffected","versionType":"semver"},{"version":"6.13.12","lessThanOrEqual":"6.13.*","status":"unaffected","versionType":"semver"},{"version":"6.14.3","lessThanOrEqual":"6.14.*","status":"unaffected","versionType":"semver"},{"version":"6.15","lessThanOrEqual":"*","status":"unaffected","versionType":"original_commit_for_fix"}]}],"cpeApplicability":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.7","versionEndExcluding":"5.10.237"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.7","versionEndExcluding":"5.15.181"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.7","versionEndExcluding":"6.1.135"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.7","versionEndExcluding":"6.6.88"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.7","versionEndExcluding":"6.12.24"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.7","versionEndExcluding":"6.13.12"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.7","versionEndExcluding":"6.14.3"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.7","versionEndExcluding":"6.15"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.6.7"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/ba3ce6c60cd5db258687dfeba9fc608f5e7cadf3"},{"url":"https://git.kernel.org/stable/c/9c9000cb91b986eb7f75835340c67857ab97c09b"},{"url":"https://git.kernel.org/stable/c/b2a1833e1c63e2585867ebeaf4dd41494dcede4b"},{"url":"https://git.kernel.org/stable/c/864ba5c651b03830f36f0906c21af05b15c1aaa6"},{"url":"https://git.kernel.org/stable/c/e0717385f5c51e290c2cd2ad4699a778316b5132"},{"url":"https://git.kernel.org/stable/c/20048e658652e731f5cadf4a695925e570ca0ff9"},{"url":"https://git.kernel.org/stable/c/6c14ee6af8f1f188b668afd6d003f7516a507b08"},{"url":"https://git.kernel.org/stable/c/b4885bd5935bb26f0a414ad55679a372e53f9b9b"}],"title":"cifs: avoid NULL pointer dereference in dbg call","x_generator":{"engine":"bippy-1.2.0"}},"adp":[{"title":"CVE Program Container","references":[{"url":"https://lists.debian.org/debian-lts-announce/2025/05/msg00045.html"},{"url":"https://lists.debian.org/debian-lts-announce/2025/05/msg00030.html"}],"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2025-11-03T19:56:20.631Z"}}]}}