Security Advisory

CVE-2025-37809

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-05-08 06:26:07

Last updated 2026-05-11 21:15:33

Assigner Linux

State PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: usb: typec: class: Fix NULL pointer access Concurrent calls to typec_partner_unlink_device can lead to a NULL pointer dereference. This patch adds a mutex to protect USB device pointers and prevent this issue. The same mutex protects both the device pointers and the partner device registration.

← Browse all CVEs View on cve.org ↗