CVE-2025-37935

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A issue in the Linux kernel has been resolved, specifically in the mtk eth soc component of the Ethernet network driver. The problem occurs when the mtk poll rx() function detects the MTK RESETTING flag, leading to a jump to release desc and a subsequent refill of the high word of the SDP on the 4GB RFB. This results in mtk rx clean processing an incorrect SDP, causing a system panic. The issue is related to systems with 4GB or more of RAM.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Race Condition

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-362

Related Identifiers

BDU:2025-11989

CVE-2025-37935

MGASA-2025-0182

MGASA-2025-0183

USN-7649-1

USN-7649-2

USN-7650-1

USN-7665-1

USN-7665-2

USN-7721-1

USN-8028-1

USN-8028-2

USN-8028-3

USN-8028-4

USN-8028-5

USN-8028-6

USN-8028-7

USN-8028-8

USN-8031-1

USN-8031-2

USN-8031-3

USN-8052-1

USN-8052-2

USN-8074-1

USN-8074-2

USN-8126-1

Affected Products

Astra Linux

Linuxmint

Linux Kernel

Red Os

Ubuntu

CVE-2025-37935

Weakness Enumeration

Related Identifiers

Affected Products

References · 1304