Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: usb: chipidea: ci_hdrc_imx: fix usbmisc handling usbmisc is an optional device property so it is totally valid for the corresponding data->usbmisc_data to have a NULL value. Check that before dereferencing the pointer. Found by Linux Verification Center (linuxtesting.org) with Svace static analysis tool.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | >= 5.15.179, < 5.15.181 |
| Debian | Debian Linux | 11.0 |
Related Weaknesses (CWE)
References
- https://git.kernel.org/stable/c/0ee460498ced49196149197c9f6d29a10e5e0798Patch
- https://git.kernel.org/stable/c/121e9f80ea5478bca3a8f3f26593fd66f87da649Patch
- https://git.kernel.org/stable/c/2aa87bd825377f5073b76701780a902cd0fc725aPatch
- https://git.kernel.org/stable/c/4e28f79e3dffa52d327b46d1a78dac16efb5810bPatch
- https://git.kernel.org/stable/c/8060b719676e8c0e5a2222c2977ba0458d9d9535Patch
- https://git.kernel.org/stable/c/887902ca73490f38c69fd6149ef361a041cf912fPatch
- https://lists.debian.org/debian-lts-announce/2025/05/msg00045.htmlMailing ListThird Party Advisory
FAQ
What is CVE-2025-37811?
CVE-2025-37811 is a vulnerability with a CVSS score of 5.5 (MEDIUM). In the Linux kernel, the following vulnerability has been resolved: usb: chipidea: ci_hdrc_imx: fix usbmisc handling usbmisc is an optional device property so it is totally valid for the correspondi...
How severe is CVE-2025-37811?
CVE-2025-37811 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2025-37811?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel, Debian Debian Linux.