CVE-2025-37851

CVSS v2.0

5.9

Medium

Vector

AV:L/AC:H/Au:M/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A vulnerability in the Linux kernel has been resolved by adding a check for the plane value in the dispc ovl setup function. The function is not intended to work with the value OMAP DSS WB of the enum parameter plane. Although the current code state prevents this value from being taken, a check has been added for defensive coding purposes. Without this check, a buffer overflow could occur in the dispc ovl setup global alpha function.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Uncontrolled Recursion

Improper Initialization

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-674CWE-665

Related Identifiers

BDU:2025-12246

CVE-2025-37851

DLA-4178-1

DLA-4193-1

ECHO-9C49-4B46-9DA2

OESA-2025-1572

OESA-2025-1573

SUSE-SU-2025:01964-1

SUSE-SU-2025:01965-1

SUSE-SU-2025:02000-1

SUSE-SU-2025:02254-1

SUSE-SU-2025:02307-1

SUSE-SU-2025:02333-1

SUSE-SU-2025:02923-1

SUSE-SU-2025:20408-1

SUSE-SU-2025:20413-1

SUSE-SU-2025:20419-1

SUSE-SU-2025:20421-1

SUSE-SU-2025_01964-1

SUSE-SU-2025_01965-1

SUSE-SU-2025_02000-1

SUSE-SU-2025_02254-1

SUSE-SU-2025_02307-1

SUSE-SU-2025_02333-1

USN-7594-1

USN-7594-2

USN-7594-3

USN-7654-1

USN-7654-2

USN-7654-3

USN-7654-4

USN-7654-5

USN-7655-1

USN-7686-1

USN-7711-1

USN-7712-1

USN-7712-2

USN-8028-1

USN-8028-2

USN-8028-3

USN-8028-4

USN-8028-5

USN-8028-6

USN-8028-7

USN-8028-8

USN-8031-1

USN-8031-2

USN-8031-3

USN-8052-1

USN-8052-2

USN-8074-1

USN-8074-2

USN-8126-1

Affected Products

Astra Linux

Debian

Linuxmint

Linux Kernel

Red Os

Suse

Ubuntu

CVE-2025-37851

Weakness Enumeration

Related Identifiers

Affected Products

References · 3155