« List of all CVEs

CVE-2025-37985

USB: wdm: close race between wdm_open and wdm_wwan_port_stop

Published: 5/20/2025 Last updated: 5/11/2026 Reserved: 4/16/2025

In the Linux kernel, the following vulnerability has been resolved: USB: wdm: close race between wdm_open and wdm_wwan_port_stop Clearing WDM_WWAN_IN_USE must be the last action or we can open a chardev whose URBs are still poisoned

CNA assigner: Linux (416baaa9-dc9f-4396-8d5f-8c081fb06d67) Requested by: n/a

Opam packages affected (29)

albatross cdrom conf-bpftool conf-libbpf conf-linux-libc-dev core core_unix hvsock mirage-block-unix mm ocaml-probes ortools_solvers orun rawlink rawlink-eio rawlink-lwt restricted shell solo5 solo5-bindings-hvt solo5-bindings-spt solo5-cross-aarch64 solo5-kernel-ukvm tracy-client tuntap uring vhd-format vhd-format-lwt xapi-stdext-unix

Products affected (4)

Product Vendor Version
Linux Linux 7.0.0 to 7.0.73
Linux Linux 6.0.16 to 6.0.48
Linux Linux version 1803 (Server Core Installation)
Linux Linux prior to v8.3.5

References (14)