What is the severity of CVE-2025-37838?

CVE-2025-37838 has been classified as a critical vulnerability due to its potential to allow exploitation through a race condition.

How do I fix CVE-2025-37838?

To fix CVE-2025-37838, update your Linux kernel to the latest available version that addresses this vulnerability.

What systems are affected by CVE-2025-37838?

CVE-2025-37838 affects the Linux kernel, specifically systems running versions that include the vulnerable ssi_protocol driver.

What is the impact of CVE-2025-37838?

The impact of CVE-2025-37838 includes potential denial of service or arbitrary code execution due to a use after free vulnerability.

Is there a workaround for CVE-2025-37838?

Currently, there are no known workarounds for CVE-2025-37838, so applying the kernel update is the recommended action.

Vulnerability/
CVE-2025-37838

high

7.8

CWE

416 362

EPSS

0.013%

18/4/2025

25/4/2025

CVE-2025-37838: HSI: ssi_protocol: Fix use after free vulnerability in ssi_protocol Driver Due to Race Condition

First published: Fri Apr 18 2025(Updated: )

In the Linux kernel, the following vulnerability has been resolved: HSI: ssi_protocol: Fix use after free vulnerability in ssi_protocol Driver Due to Race Condition In the ssi_protocol_probe() function, &ssi->work is bound with ssip_xmit_work(), In ssip_pn_setup(), the ssip_pn_xmit() function within the ssip_pn_ops structure is capable of starting the work. If we remove the module which will call ssi_protocol_remove() to make a cleanup, it will free ssi through kfree(ssi), while the work mentioned above will be used. The sequence of operations that may lead to a UAF bug is as follows: CPU0 CPU1 | ssip_xmit_work ssi_protocol_remove | kfree(ssi); | | struct hsi_client *cl = ssi->cl; | // use ssi Fix it by ensuring that the work is canceled before proceeding with the cleanup in ssi_protocol_remove().

Credit: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Affected Software	Affected Version	How to fix
Linux Kernel

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2025-37838?
CVE-2025-37838 has been classified as a critical vulnerability due to its potential to allow exploitation through a race condition.
How do I fix CVE-2025-37838?
To fix CVE-2025-37838, update your Linux kernel to the latest available version that addresses this vulnerability.
What systems are affected by CVE-2025-37838?
CVE-2025-37838 affects the Linux kernel, specifically systems running versions that include the vulnerable ssi_protocol driver.
What is the impact of CVE-2025-37838?
The impact of CVE-2025-37838 includes potential denial of service or arbitrary code execution due to a use after free vulnerability.
Is there a workaround for CVE-2025-37838?
Currently, there are no known workarounds for CVE-2025-37838, so applying the kernel update is the recommended action.

agent/title
agent/type
agent/description
agent/first-publish-date
agent/guess-ai
agent/software-canonical-lookup
agent/softwarecombine
agent/author
agent/references
agent/source
agent/last-modified-date
agent/severity
agent/tags
collector/mitre-cve
source/MITRE
agent/weakness
collector/epss-latest
source/FIRST
agent/epss
agent/event
collector/nvd-api
source/NVD
vendor/linux
canonical/linux kernel

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.