Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: crypto: null - Use spin lock instead of mutex As the null algorithm may be freed in softirq context through af_alg, use spin locks instead of mutexes to protect the default null algorithm.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | >= 4.2, < 5.4.293 |
| Debian | Debian Linux | 11.0 |
References
- https://git.kernel.org/stable/c/0486de3c1b8223138dcc614846bd76364f758de6Patch
- https://git.kernel.org/stable/c/1b66a5920b7fc7cc6251192a3fcad115b6d75dd5Patch
- https://git.kernel.org/stable/c/1dd4a8561d85dea545cf93f56efc48df8176e218Patch
- https://git.kernel.org/stable/c/8cf2945512a8c0ef74ddd5b5a4f6b6a2fb1a4efbPatch
- https://git.kernel.org/stable/c/dcc47a028c24e793ce6d6efebfef1a1e92f80297Patch
- https://git.kernel.org/stable/c/e27244cbe10658a66b8775be7f0acc4ad2f618d6Patch
- https://git.kernel.org/stable/c/e307c54ac8198bf09652c72603ba6e6d97798410Patch
- https://git.kernel.org/stable/c/f7a5a5c8e1ec16a4b2041398abe95de0e14572efPatch
- https://lists.debian.org/debian-lts-announce/2025/05/msg00030.htmlMailing List
- https://lists.debian.org/debian-lts-announce/2025/05/msg00045.htmlMailing List
FAQ
What is CVE-2025-37808?
CVE-2025-37808 is a vulnerability with a CVSS score of 5.5 (MEDIUM). In the Linux kernel, the following vulnerability has been resolved: crypto: null - Use spin lock instead of mutex As the null algorithm may be freed in softirq context through af_alg, use spin locks...
How severe is CVE-2025-37808?
CVE-2025-37808 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2025-37808?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel, Debian Debian Linux.