CVE-2025-39936 — NULL Pointer Dereference in Linux
Severity
5.5MEDIUMNVD
EPSS
0.0%
top 95.28%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedOct 4
Description
In the Linux kernel, the following vulnerability has been resolved:
crypto: ccp - Always pass in an error pointer to __sev_platform_shutdown_locked()
When
9770b428b1a2 ("crypto: ccp - Move dev_info/err messages for SEV/SNP init and shutdown")
moved the error messages dumping so that they don't need to be issued by
the callers, it missed the case where __sev_firmware_shutdown() calls
__sev_platform_shutdown_locked() with a NULL argument which leads to
a NULL ptr deref on the shutdown path, du…
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6
Affected Packages12 packages
▶CVEListV5linux/linux9770b428b1a28360663f1f5e524ee458b4cf454b — bc509293c9d4f4f74e776f4a0bbb61f63c041938+2
Patches
🔴Vulnerability Details
2GHSA▶
GHSA-jm8p-ggg3-gfgw: In the Linux kernel, the following vulnerability has been resolved:
crypto: ccp - Always pass in an error pointer to __sev_platform_shutdown_locked()↗2025-10-04
OSV▶
CVE-2025-39936: In the Linux kernel, the following vulnerability has been resolved: crypto: ccp - Always pass in an error pointer to __sev_platform_shutdown_locked()↗2025-10-04
📋Vendor Advisories
3Red Hat▶
kernel: crypto: ccp - Always pass in an error pointer to __sev_platform_shutdown_locked()↗2025-10-04
Debian▶
CVE-2025-39936: linux - In the Linux kernel, the following vulnerability has been resolved: crypto: ccp...↗2025
Microsoft▶
An issue was discovered in HTTP2 in Qt before 5.15.18 6.x before 6.2.13 6.3.x through 6.5.x before 6.5.7 and 6.6.x through 6.7.x before 6.7.3. Code to make security-relevant decisions about an establi↗2024-07-09