CVE-2025-37933

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2025-37933
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-37933.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2025-37933
Downstream
Related
Published
2025-05-20T15:21:58Z
Modified
2025-10-18T01:24:49.205511Z
Summary
octeon_ep: Fix host hang issue during device reboot
Details

In the Linux kernel, the following vulnerability has been resolved:

octeon_ep: Fix host hang issue during device reboot

When the host loses heartbeat messages from the device, the driver calls the device-specific ndostop function, which frees the resources. If the driver is unloaded in this scenario, it calls ndostop again, attempting to free resources that have already been freed, leading to a host hang issue. To resolve this, devclose should be called instead of the device-specific stop function.devclose internally calls ndostop to stop the network interface and performs additional cleanup tasks. During the driver unload process, if the device is already down, ndostop is not called.

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
5cb96c29aa0ea359e4f5d30585538dc6a847d69d
Fixed
7e1ca1bed3f66e00377f7d2147be390144924276
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
5cb96c29aa0ea359e4f5d30585538dc6a847d69d
Fixed
c8d788f800f83b94d9db8b3dacc1d26be38a6ef4
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
5cb96c29aa0ea359e4f5d30585538dc6a847d69d
Fixed
6d1052423518e7d0aece9af5e77bbc324face8f1
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
5cb96c29aa0ea359e4f5d30585538dc6a847d69d
Fixed
34f42736b325287a7b2ce37e415838f539767bda

Affected versions

v6.*

v6.10
v6.10-rc1
v6.10-rc2
v6.10-rc3
v6.10-rc4
v6.10-rc5
v6.10-rc6
v6.10-rc7
v6.11
v6.11-rc1
v6.11-rc2
v6.11-rc3
v6.11-rc4
v6.11-rc5
v6.11-rc6
v6.11-rc7
v6.12
v6.12-rc1
v6.12-rc2
v6.12-rc3
v6.12-rc4
v6.12-rc5
v6.12-rc6
v6.12-rc7
v6.12.1
v6.12.10
v6.12.11
v6.12.12
v6.12.13
v6.12.14
v6.12.15
v6.12.16
v6.12.17
v6.12.18
v6.12.19
v6.12.2
v6.12.20
v6.12.21
v6.12.22
v6.12.23
v6.12.24
v6.12.25
v6.12.26
v6.12.27
v6.12.3
v6.12.4
v6.12.5
v6.12.6
v6.12.7
v6.12.8
v6.12.9
v6.13
v6.13-rc1
v6.13-rc2
v6.13-rc3
v6.13-rc4
v6.13-rc5
v6.13-rc6
v6.13-rc7
v6.14
v6.14-rc1
v6.14-rc2
v6.14-rc3
v6.14-rc4
v6.14-rc5
v6.14-rc6
v6.14-rc7
v6.14.1
v6.14.2
v6.14.3
v6.14.4
v6.14.5
v6.15-rc1
v6.15-rc2
v6.15-rc3
v6.3
v6.3-rc4
v6.3-rc5
v6.3-rc6
v6.3-rc7
v6.4
v6.4-rc1
v6.4-rc2
v6.4-rc3
v6.4-rc4
v6.4-rc5
v6.4-rc6
v6.4-rc7
v6.5
v6.5-rc1
v6.5-rc2
v6.5-rc3
v6.5-rc4
v6.5-rc5
v6.5-rc6
v6.5-rc7
v6.6
v6.6-rc1
v6.6-rc2
v6.6-rc3
v6.6-rc4
v6.6-rc5
v6.6-rc6
v6.6-rc7
v6.6.1
v6.6.10
v6.6.11
v6.6.12
v6.6.13
v6.6.14
v6.6.15
v6.6.16
v6.6.17
v6.6.18
v6.6.19
v6.6.2
v6.6.20
v6.6.21
v6.6.22
v6.6.23
v6.6.24
v6.6.25
v6.6.26
v6.6.27
v6.6.28
v6.6.29
v6.6.3
v6.6.30
v6.6.31
v6.6.32
v6.6.33
v6.6.34
v6.6.35
v6.6.36
v6.6.37
v6.6.38
v6.6.39
v6.6.4
v6.6.40
v6.6.41
v6.6.42
v6.6.43
v6.6.44
v6.6.45
v6.6.46
v6.6.47
v6.6.48
v6.6.49
v6.6.5
v6.6.50
v6.6.51
v6.6.52
v6.6.53
v6.6.54
v6.6.55
v6.6.56
v6.6.57
v6.6.58
v6.6.59
v6.6.6
v6.6.60
v6.6.61
v6.6.62
v6.6.63
v6.6.64
v6.6.65
v6.6.66
v6.6.67
v6.6.68
v6.6.69
v6.6.7
v6.6.70
v6.6.71
v6.6.72
v6.6.73
v6.6.74
v6.6.75
v6.6.76
v6.6.77
v6.6.78
v6.6.79
v6.6.8
v6.6.80
v6.6.81
v6.6.82
v6.6.83
v6.6.84
v6.6.85
v6.6.86
v6.6.87
v6.6.88
v6.6.89
v6.6.9
v6.7
v6.7-rc1
v6.7-rc2
v6.7-rc3
v6.7-rc4
v6.7-rc5
v6.7-rc6
v6.7-rc7
v6.7-rc8
v6.8
v6.8-rc1
v6.8-rc2
v6.8-rc3
v6.8-rc4
v6.8-rc5
v6.8-rc6
v6.8-rc7
v6.9
v6.9-rc1
v6.9-rc2
v6.9-rc3
v6.9-rc4
v6.9-rc5
v6.9-rc6
v6.9-rc7

Database specific

vanir_signatures

[
    {
        "signature_type": "Line",
        "id": "CVE-2025-37933-0c84e435",
        "target": {
            "file": "drivers/net/ethernet/marvell/octeon_ep/octep_main.c"
        },
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "204737054844805717181634718587040870178",
                "268707052051626391408421469931097342003",
                "332299151757157842127895679765791080874",
                "298505935623553362621630156820761229112"
            ]
        },
        "signature_version": "v1",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@c8d788f800f83b94d9db8b3dacc1d26be38a6ef4",
        "deprecated": false
    },
    {
        "signature_type": "Line",
        "id": "CVE-2025-37933-0d91f913",
        "target": {
            "file": "drivers/net/ethernet/marvell/octeon_ep/octep_main.c"
        },
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "204737054844805717181634718587040870178",
                "268707052051626391408421469931097342003",
                "332299151757157842127895679765791080874",
                "298505935623553362621630156820761229112"
            ]
        },
        "signature_version": "v1",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@6d1052423518e7d0aece9af5e77bbc324face8f1",
        "deprecated": false
    },
    {
        "signature_type": "Line",
        "id": "CVE-2025-37933-1b5fbb6d",
        "target": {
            "file": "drivers/net/ethernet/marvell/octeon_ep/octep_main.c"
        },
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "204737054844805717181634718587040870178",
                "268707052051626391408421469931097342003",
                "332299151757157842127895679765791080874",
                "298505935623553362621630156820761229112"
            ]
        },
        "signature_version": "v1",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@7e1ca1bed3f66e00377f7d2147be390144924276",
        "deprecated": false
    },
    {
        "signature_type": "Line",
        "id": "CVE-2025-37933-8c794f74",
        "target": {
            "file": "drivers/net/ethernet/marvell/octeon_ep/octep_main.c"
        },
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "204737054844805717181634718587040870178",
                "268707052051626391408421469931097342003",
                "332299151757157842127895679765791080874",
                "298505935623553362621630156820761229112"
            ]
        },
        "signature_version": "v1",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@34f42736b325287a7b2ce37e415838f539767bda",
        "deprecated": false
    }
]

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
6.4.0
Fixed
6.6.90
Type
ECOSYSTEM
Events
Introduced
6.7.0
Fixed
6.12.28
Type
ECOSYSTEM
Events
Introduced
6.13.0
Fixed
6.14.6