CVE-2025-37883

s390/sclp: Add check for get_zeroed_page()

Description

In the Linux kernel, the following vulnerability has been resolved: s390/sclp: Add check for get_zeroed_page() Add check for the return value of get_zeroed_page() in sclp_console_init() to prevent null pointer dereference. Furthermore, to solve the memory leak caused by the loop allocation, add a free helper to do the free job.

N/A
CVSS
Severity:
EPSS 0.03%
Affected: Linux Linux
Affected: Linux Linux
Published at:
Updated at:

References

Link Tags
https://git.kernel.org/stable/c/e1e00dc45648125ef7cb87ebc3b581ac224e7b39
https://git.kernel.org/stable/c/397254706eba9d8f99fd237feede7ab3169a7f9a
https://git.kernel.org/stable/c/28e5a867aa542e369e211c2baba7044228809a99
https://git.kernel.org/stable/c/3b3aa72636a6205933609ec274a8747720c1ee3f
https://git.kernel.org/stable/c/f69f8a93aacf6e99af7b1cc992d8ca2cc07b96fb
https://git.kernel.org/stable/c/3db42c75a921854a99db0a2775814fef97415bac

Frequently Asked Questions

What is the severity of CVE-2025-37883?
CVE-2025-37883 has not yet been assigned a CVSS score.
How to fix CVE-2025-37883?
To fix CVE-2025-37883, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2025-37883 being actively exploited in the wild?
As for now, there are no information to confirm that CVE-2025-37883 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2025-37883?
CVE-2025-37883 affects Linux Linux, Linux Linux.
This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.
© 2025 Under My Watch. All Rights Reserved.