CVE-2025-37830

Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
08/05/2025
Last modified:
08/05/2025

Description

In the Linux kernel, the following vulnerability has been resolved:<br /> <br /> cpufreq: scmi: Fix null-ptr-deref in scmi_cpufreq_get_rate()<br /> <br /> cpufreq_cpu_get_raw() can return NULL when the target CPU is not present<br /> in the policy-&gt;cpus mask. scmi_cpufreq_get_rate() does not check for<br /> this case, which results in a NULL pointer dereference.<br /> <br /> Add NULL check after cpufreq_cpu_get_raw() to prevent this issue.

Impact