CVE-2025-37784

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A NULL pointer dereference issue has been identified in the ICSS IEP driver of the Linux kernel. This issue occurs when disabling PPS and perout signals during the icss iep exit() function, resulting in a NULL pointer dereference for perout. The problem arises because the ptp perout request structure is referenced when its contents are irrelevant. To resolve this issue, the icss iep perout enable hw function can be modified to directly clear the IEP CMP registers when disabling PPS or PEROUT.

Recommendations To fix the null pointer dereference issue, modify the icss iep perout enable hw function to directly clear the IEP CMP registers when disabling PPS or PEROUT, without referencing the ptp perout request structure. As a temporary workaround, consider disabling the icss iep perout enable hw function until a patch is available.

Exploit

Fix

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-476

Related Identifiers

BDU:2025-12155

CVE-2025-37784

OESA-2025-1823

OESA-2025-1824

OESA-2025-1870

USN-7594-1

USN-7594-2

USN-7594-3

USN-8028-1

USN-8028-2

USN-8028-3

USN-8028-4

USN-8028-5

USN-8028-6

USN-8028-7

USN-8028-8

USN-8031-1

USN-8031-2

USN-8031-3

USN-8052-1

USN-8052-2

USN-8074-1

USN-8074-2

USN-8126-1

Affected Products

Astra Linux

Linuxmint

Linux Kernel

Red Os

Ubuntu

CVE-2025-37784

Weakness Enumeration

Related Identifiers

Affected Products

References · 1479