CVE-2025-37826 – Linux Kernel UFS SCSI Null Pointer Dereference Vulnerability

May 8, 2025

CVE ID : CVE-2025-37826

Published : May 8, 2025, 7:15 a.m. | 58 minutes ago

Description : In the Linux kernel, the following vulnerability has been resolved:

scsi: ufs: core: Add NULL check in ufshcd_mcq_compl_pending_transfer()

Add a NULL check for the returned hwq pointer by ufshcd_mcq_req_to_hwq().

This is similar to the fix in commit 74736103fb41 (“scsi: ufs: core: Fix
ufshcd_abort_one racing issue”).

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-37821 – Linux Kernel Sched Eevdf Crash

Next Article CVE-2025-37816 – Linux Kernel Mei VSC Buffer Overflow Vulnerability

Highlights

CVE-2025-47777 – 5ire Stored XSS and RCE Vulnerability

May 14, 2025

CVE ID : CVE-2025-47777

Published : May 14, 2025, 4:15 p.m. | 17 minutes ago

Description : 5ire is a cross-platform desktop artificial intelligence assistant and model context protocol client. Versions prior to 0.11.1 are vulnerable to stored cross-site scripting in chatbot responses due to insufficient sanitization. This, in turn, can lead to Remote Code Execution (RCE) via unsafe Electron protocol handling and exposed Electron APIs. All users of 5ire client versions prior to patched releases, particularly those interacting with untrusted chatbots or pasting external content, are affected. Version 0.11.1 contains a patch for the issue.

Severity: 9.6 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Google’s Agent2Agent protocol finds new home at the Linux Foundation

Decoding The SVG path Element: Curve And Arc Commands

This week in AI dev tools: Gemini 2.5 Pro and Flash GA, GitHub Copilot Spaces, and more (June 20, 2025)

Gemini 2.5 Pro and Flash are generally available and Gemini 2.5 Flash-Lite preview is announced

Best early Prime Day Nintendo Switch deals: My 17 favorite sales live now

How I use VirtualBox to run any OS on my Mac – including Linux

Apple will give you a free pair of AirPods when you buy a MacBook or iPad for school – here’s who’s eligible

How Apple’s biggest potential acquisition ever could perplex AI rivals like Google

Music Streaming Platform using PHP and MySQL

Music Streaming Platform using PHP and MySQL

Solutions That Benefit Everyone – Why Inclusive Design Matters for All

Reducing Barriers Across Industries Through Inclusive Design

Windows 11 Installation Assistant Download: 2025 Guide

Windows 11 Installation Assistant Download: 2025 Guide

Didn’t Receive Gears of War: Reloaded Code? Explainer

Fix Vibrant Visuals Greyed Out in Minecraft Bedrock

CVE-2025-37826 – Linux Kernel UFS SCSI Null Pointer Dereference Vulnerability

Typhoon-like gang slinging TLS certificate ‘signed’ by the Los Angeles Police Department

Wedding Invitation Scam: SpyMax RAT Targets Indian WhatsApp Users, Stealing OTPs & Banking Credentials

Verizon will sell you the Samsung Galaxy S25 Edge for free – how the deal works

Error’d: Squaring the Circle

melonDS is an Nintendo DS and DSi emulator

Discover Linux Mint 22: How Cinnamon Became the Sleek, Speedy Desktop Champion of 2025

CVE-2025-47777 – 5ire Stored XSS and RCE Vulnerability

Windows 11 tests built-in “Create GIF” feature with Ctrl+G shortcut

Drop into Verdansk with the hottest new accessories from the Corsair and Call of Duty crossover’s new Warzone line

(CVE-2025-33053) New 0-Day in WebDAV Exposes Servers to Remote Code Execution — Here’s What You…

CVE-2025-37826 – Linux Kernel UFS SCSI Null Pointer Dereference Vulnerability

Related Posts