Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: iio: imu: st_lsm6dsx: fix possible lockup in st_lsm6dsx_read_tagged_fifo Prevent st_lsm6dsx_read_tagged_fifo from falling in an infinite loop in case pattern_len is equal to zero and the device FIFO is not empty.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | >= 4.20, < 5.4.294 |
| Debian | Debian Linux | 11.0 |
Related Weaknesses (CWE)
References
- https://git.kernel.org/stable/c/16857370b3a30663515956b3bd27f3def6a2cf06Patch
- https://git.kernel.org/stable/c/35b8c0a284983b71d92d082c54b7eb655ed4194fPatch
- https://git.kernel.org/stable/c/4db7d923a8c298788181b796f71adf6ca499f966Patch
- https://git.kernel.org/stable/c/76727a1d81afde77d21ea8feaeb12d34605be6f4Patch
- https://git.kernel.org/stable/c/8114ef86e2058e2554111b793596f17bee23fa15Patch
- https://git.kernel.org/stable/c/9ce662851380fe2018e36e15c0bdcb1ad177ed95Patch
- https://git.kernel.org/stable/c/9ddb4cf2192c213e4dba1733bbcdc94cf6d85bf7Patch
- https://git.kernel.org/stable/c/dadf9116108315f2eb14c7415c7805f392c476b4Patch
- https://lists.debian.org/debian-lts-announce/2025/08/msg00010.htmlThird Party Advisory
- https://lists.debian.org/debian-lts-announce/2025/10/msg00007.htmlThird Party Advisory
FAQ
What is CVE-2025-37969?
CVE-2025-37969 is a vulnerability with a CVSS score of 5.5 (MEDIUM). In the Linux kernel, the following vulnerability has been resolved: iio: imu: st_lsm6dsx: fix possible lockup in st_lsm6dsx_read_tagged_fifo Prevent st_lsm6dsx_read_tagged_fifo from falling in an in...
How severe is CVE-2025-37969?
CVE-2025-37969 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2025-37969?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel, Debian Debian Linux.