Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: s390/sclp: Add check for get_zeroed_page() Add check for the return value of get_zeroed_page() in sclp_console_init() to prevent null pointer dereference. Furthermore, to solve the memory leak caused by the loop allocation, add a free helper to do the free job.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | < 5.15.181 |
| Debian | Debian Linux | 11.0 |
Related Weaknesses (CWE)
References
- https://git.kernel.org/stable/c/28e5a867aa542e369e211c2baba7044228809a99Patch
- https://git.kernel.org/stable/c/397254706eba9d8f99fd237feede7ab3169a7f9aPatch
- https://git.kernel.org/stable/c/3b3aa72636a6205933609ec274a8747720c1ee3fPatch
- https://git.kernel.org/stable/c/3db42c75a921854a99db0a2775814fef97415bacPatch
- https://git.kernel.org/stable/c/e1e00dc45648125ef7cb87ebc3b581ac224e7b39Patch
- https://git.kernel.org/stable/c/f69f8a93aacf6e99af7b1cc992d8ca2cc07b96fbPatch
- https://lists.debian.org/debian-lts-announce/2025/05/msg00045.htmlMailing ListThird Party Advisory
FAQ
What is CVE-2025-37883?
CVE-2025-37883 is a vulnerability with a CVSS score of 5.5 (MEDIUM). In the Linux kernel, the following vulnerability has been resolved: s390/sclp: Add check for get_zeroed_page() Add check for the return value of get_zeroed_page() in sclp_console_init() to prevent n...
How severe is CVE-2025-37883?
CVE-2025-37883 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2025-37883?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel, Debian Debian Linux.