CVE-2025-37845

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A possible use-after-free (UAF) issue has been identified in the Linux kernel related to tracing and fprobe events. The problem arises when a module is unloaded before try module get() is called, potentially allowing access to a freed object. This issue was introduced by a commit that moved try module get() from find tracepoint module cb() to the find tracepoint() caller.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

DoS

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

BDU:2025-12073

CVE-2025-37845

OPENSUSE-SU-2026:20287-1

SUSE-SU-2026:20555-1

SUSE-SU-2026:20599-1

SUSE-SU-2026:20615-1

USN-7594-1

USN-7594-2

USN-7594-3

Affected Products

Linux Kernel

Red Os

Ubuntu

CVE-2025-37845

Weakness Enumeration

Related Identifiers

Affected Products

References · 809