PT-2025-22207 · Linux+5 · Linux Kernel+5

Published

2025-05-07

Updated

2026-03-06

CVE-2025-37946

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A vulnerability in the Linux kernel has been resolved, specifically related to the s390/pci component. The issue arises from a duplicate pci dev put() call in the disable slot() function when a Physical Function (PF) has child Virtual Functions (VFs). This duplicate call can lead to a use-after-free condition if the struct pci dev is released in an unexpected state. The problem originated from a code change introduced by a specific commit, which modified the handling of power off for a PF with child VFs but inadvertently left an existing pci dev put() call untouched.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

BDU:2025-12067

CVE-2025-37946

SUSE-SU-2025:02249-1

SUSE-SU-2025:02254-1

SUSE-SU-2025:02307-1

SUSE-SU-2025:02333-1

SUSE-SU-2025:02335-1

SUSE-SU-2025:02538-1

SUSE-SU-2025:02923-1

SUSE-SU-2025:20475-1

SUSE-SU-2025:20483-1

SUSE-SU-2025:20493-1

SUSE-SU-2025:20498-1

SUSE-SU-2025_02249-1

SUSE-SU-2025_02254-1

SUSE-SU-2025_02307-1

SUSE-SU-2025_02333-1

SUSE-SU-2025_02335-1

SUSE-SU-2025_02538-1

USN-7649-1

USN-7649-2

USN-7650-1

USN-7665-1

USN-7665-2

USN-7721-1

Affected Products

Astra Linux

Linuxmint

Linux Kernel

Red Os

Suse

Ubuntu

PT-2025-22207 · Linux+5 · Linux Kernel+5

CVE-2025-37946

Weakness Enumeration

Related Identifiers

Affected Products

References · 1233