Home

CVE-2025-37791

Description

In the Linux kernel, the following vulnerability has been resolved:ethtool: cmis_cdb: use correct rpl size in ethtool_cmis_module_poll()rpl is passed as a pointer to ethtool_cmis_module_poll(), so the correctsize of rpl is sizeof(*rpl) which should be just 1 byte. Using thepointer size instead can cause stack corruption:Kernel panic - not syncing: stack-protector: Kernel stack is corrupted in: ethtool_cmis_wait_for_cond+0xf4/0x100CPU: 72 UID: 0 PID: 4440 Comm: kworker/72:2 Kdump: loaded Tainted: G OE 6.11.0 #24Tainted: [O]=OOT_MODULE, [E]=UNSIGNED_MODULEHardware name: Dell Inc. PowerEdge R760/04GWWM, BIOS 1.6.6 09/20/2023Workqueue: events module_flash_fw_workCall Trace: panic+0x339/0x360 ethtool_cmis_wait_for_cond+0xf4/0x100 __pfx_status_success+0x10/0x10 __pfx_status_fail+0x10/0x10 __stack_chk_fail+0x10/0x10 ethtool_cmis_wait_for_cond+0xf4/0x100 ethtool_cmis_cdb_execute_cmd+0x1fc/0x330 __pfx_status_fail+0x10/0x10 cmis_cdb_module_features_get+0x6d/0xd0 ethtool_cmis_cdb_init+0x8a/0xd0 ethtool_cmis_fw_update+0x46/0x1d0 module_flash_fw_work+0x17/0xa0 process_one_work+0x179/0x390 worker_thread+0x239/0x340 __pfx_worker_thread+0x10/0x10 kthread+0xcc/0x100 __pfx_kthread+0x10/0x10 ret_from_fork+0x2d/0x50 __pfx_kthread+0x10/0x10 ret_from_fork_asm+0x1a/0x30

Risk Information

Base Score
5.5
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
0.052

Associated Vulnerability

VulnerabilityOS Platform
Linux kernel (USN-7594-1) linux-image-6.14.0-1004-realtime_6.14.0-1004.4_amd64.debLinux
Linux kernel (USN-7594-1) linux-image-6.14.0-1008-gcp_6.14.0-1008.8_amd64.debLinux
Linux kernel (USN-7594-1) linux-image-6.14.0-22-generic_6.14.0-22.22_amd64.debLinux
Linux kernel (USN-7594-1) linux-image-gcp_6.14.0-1008.8_amd64.debLinux
Linux kernel (USN-7594-1) linux-image-generic_6.14.0-22.22_amd64.debLinux
Linux kernel (USN-7594-1) linux-image-realtime_6.14.0-1004.4_amd64.debLinux
Linux kernel for Microsoft Azure Cloud systems (USN-7594-2) linux-image-6.14.0-1007-azure_6.14.0-1007.7_amd64.debLinux
Linux kernel for Microsoft Azure Cloud systems (USN-7594-2) linux-image-6.14.0-1007-azure-fde_6.14.0-1007.7_amd64.debLinux
Linux kernel for Microsoft Azure Cloud systems (USN-7594-2) linux-image-azure_6.14.0-1007.7_amd64.debLinux
Linux kernel for Microsoft Azure Cloud systems (USN-7594-2) linux-image-azure-fde_6.14.0-1007.7_amd64.debLinux
kernel6.12 Security Update (ALAS2023-2025-995) kernel-livepatch-6.12.25-32.101-1.0-0.amzn2023.x86_64.rpmLinux
Linux kernel for Amazon Web Services (AWS) systems (USN-7594-3) linux-image-6.14.0-1007-aws_6.14.0-1007.7_amd64.debLinux
Linux kernel for Amazon Web Services (AWS) systems (USN-7594-3) linux-image-6.14.0-1007-oracle_6.14.0-1007.7_amd64.debLinux
Linux kernel for Amazon Web Services (AWS) systems (USN-7594-3) linux-image-aws_6.14.0-1007.7+1_amd64.debLinux
Linux kernel for Amazon Web Services (AWS) systems (USN-7594-3) linux-image-oracle_6.14.0-1007.7_amd64.debLinux
SUSE-SU-2025:02254-1(Public Cloud Module 15 SP7) kernel-source-azure-6.4.0-150700.20.6.1.noarch.rpmLinux
SUSE-SU-2025:02254-1(Public Cloud Module 15 SP7) kernel-syms-azure-6.4.0-150700.20.6.1.x86_64.rpmLinux
SUSE-SU-2025:02254-1(Public Cloud Module 15 SP7) kernel-azure-6.4.0-150700.20.6.1.x86_64.rpmLinux
SUSE-SU-2025:02254-1(Public Cloud Module 15 SP7) kernel-azure-debuginfo-6.4.0-150700.20.6.1.x86_64.rpmLinux
SUSE-SU-2025:02254-1(Public Cloud Module 15 SP7) kernel-azure-debugsource-6.4.0-150700.20.6.1.x86_64.rpmLinux
SUSE-SU-2025:02254-1(Public Cloud Module 15 SP7) kernel-azure-devel-6.4.0-150700.20.6.1.x86_64.rpmLinux
SUSE-SU-2025:02254-1(Public Cloud Module 15 SP7) kernel-azure-devel-debuginfo-6.4.0-150700.20.6.1.x86_64.rpmLinux
SUSE-SU-2025:02254-1(Public Cloud Module 15 SP7) kernel-devel-azure-6.4.0-150700.20.6.1.noarch.rpmLinux
SUSE-SU-2025:02307-1(Basesystem Module 15 SP7) kernel-default-6.4.0-150700.53.6.1.x86_64.rpmLinux
SUSE-SU-2025:02307-1(Legacy Module 15 SP7) reiserfs-kmp-default-6.4.0-150700.53.6.1.x86_64.rpmLinux
SUSE-SU-2025:02307-1(Legacy Module 15 SP7) reiserfs-kmp-default-debuginfo-6.4.0-150700.53.6.1.x86_64.rpmLinux
SUSE-SU-2025:02307-1(Development Tools Module 15 SP7) kernel-syms-6.4.0-150700.53.6.1.x86_64.rpmLinux
SUSE-SU-2025:02307-1(Legacy Module 15 SP7) kernel-default-debugsource-6.4.0-150700.53.6.1.x86_64.rpmLinux
SUSE-SU-2025:02307-1(Basesystem Module 15 SP7) kernel-default-base-6.4.0-150700.53.6.1.150700.17.6.1.x86_64.rpmLinux
SUSE-SU-2025:02307-1(Development Tools Module 15 SP7) kernel-source-6.4.0-150700.53.6.1.noarch.rpmLinux
SUSE-SU-2025:02307-1(Basesystem Module 15 SP7) kernel-default-devel-debuginfo-6.4.0-150700.53.6.1.x86_64.rpmLinux
SUSE-SU-2025:02307-1(Basesystem Module 15 SP7) kernel-default-devel-6.4.0-150700.53.6.1.x86_64.rpmLinux
SUSE-SU-2025:02307-1(Development Tools Module 15 SP7) kernel-obs-build-debugsource-6.4.0-150700.53.6.1.x86_64.rpmLinux
SUSE-SU-2025:02307-1(Development Tools Module 15 SP7) kernel-docs-6.4.0-150700.53.6.1.noarch.rpmLinux
SUSE-SU-2025:02307-1(Basesystem Module 15 SP7) kernel-default-debuginfo-6.4.0-150700.53.6.1.x86_64.rpmLinux
SUSE-SU-2025:02307-1(Development Tools Module 15 SP7) kernel-obs-build-6.4.0-150700.53.6.1.x86_64.rpmLinux
SUSE-SU-2025:02307-1(Basesystem Module 15 SP7) kernel-devel-6.4.0-150700.53.6.1.noarch.rpmLinux
SUSE-SU-2025:02307-1(Basesystem Module 15 SP7) kernel-macros-6.4.0-150700.53.6.1.noarch.rpmLinux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234