CVE-2025-37841

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2025-37841

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-37841.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2025-37841

Downstream

BELL-CVE-2025-37841

DEBIAN-CVE-2025-37841

DLA-4178-1

DLA-4193-1

ECHO-787b-e0fe-eab7

MINI-fcw9-5rg3-r2qq

ROOT-OS-DEBIAN-12-CVE-2025-37841

ROOT-OS-UBUNTU-2204-CVE-2025-37841

ROOT-OS-UBUNTU-2404-CVE-2025-37841

SUSE-SU-2025:01964-1

SUSE-SU-2025:01965-1

SUSE-SU-2025:02000-1

SUSE-SU-2025:02254-1

SUSE-SU-2025:02307-1

SUSE-SU-2025:02333-1

SUSE-SU-2025:02923-1

SUSE-SU-2025:20408-1

SUSE-SU-2025:20413-1

SUSE-SU-2025:20419-1

SUSE-SU-2025:20421-1

SUSE-SU-2026:20555-1

SUSE-SU-2026:20599-1

SUSE-SU-2026:20615-1

openSUSE-SU-2026:20287-1

Related

Published

2025-05-09T06:41:50.684Z

Modified

2026-05-07T04:18:33.884465Z

Summary

pm: cpupower: bench: Prevent NULL dereference on malloc failure

Details

In the Linux kernel, the following vulnerability has been resolved:

pm: cpupower: bench: Prevent NULL dereference on malloc failure

If malloc returns NULL due to low memory, 'config' pointer can be NULL. Add a check to prevent NULL dereference.

Database specific

{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/37xxx/CVE-2025-37841.json",
    "cna_assigner": "Linux"
}

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

7fe2f6399a84760a9af8896ac152728250f82adb

Fixed

34a9394794b0f97af6afedc0c9ee2012c24b28ed

Fixed

79bded9d70142d2a11d931fc029afece471641db

Fixed

0e297a02e03dceb2874789ca40bd4e65c5371704

Fixed

87b9f0867c0afa7e892f4b30c36cff6bf2707f85

Fixed

942a4b97fc77516678b1d8af1521ff9a94c13b3e

Fixed

f8d28fa305b78c5d1073b63f26db265ba8291ae1

Fixed

ceec06f464d5cfc0ba966225f7d50506ceb62242

Fixed

5e38122aa3fd0f9788186e86a677925bfec0b2d1

Fixed

208baa3ec9043a664d9acfb8174b332e6b17fb69

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-37841.json"

Linux / Kernel

Package

Name: Kernel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

3.1.0

Fixed

5.4.293

Type: ECOSYSTEM
Events: Introduced

5.5.0

Fixed

5.10.237

Type: ECOSYSTEM
Events: Introduced

5.11.0

Fixed

5.15.181

Type: ECOSYSTEM
Events: Introduced

5.16.0

Fixed

6.1.135

Type: ECOSYSTEM
Events: Introduced

6.2.0

Fixed

6.6.88

Type: ECOSYSTEM
Events: Introduced

6.7.0

Fixed

6.12.24

Type: ECOSYSTEM
Events: Introduced

6.13.0

Fixed

6.13.12

Type: ECOSYSTEM
Events: Introduced

6.14.0

Fixed

6.14.3

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-37841.json"