CVE-2025-37970

Published: May 20, 2025Modified: Dec 16, 2025

5.5

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Exploitability: 1.8 / Impact: 3.6

Source: NVD

Description

In the Linux kernel, the following vulnerability has been resolved: iio: imu: st_lsm6dsx: fix possible lockup in st_lsm6dsx_read_fifo Prevent st_lsm6dsx_read_fifo from falling in an infinite loop in case pattern_len is equal to zero and the device FIFO is not empty.

Affected (13)

Products: Linux: Linux Kernel · Debian: Debian Linux

1 product

1 product

Configuration A

12 vulnerable

Vulnerable Software	Affected Versions
Linux Linux Kernel	From 4.11 to 5.4.294
Linux Linux Kernel	From 5.11 to 5.15.183
Linux Linux Kernel	From 5.16 to 6.1.139
Linux Linux Kernel	From 5.5 to 5.10.238
Linux Linux Kernel	From 6.13 to 6.14.7
Linux Linux Kernel	From 6.2 to 6.6.91
Linux Linux Kernel	From 6.7 to 6.12.29
Linux Linux Kernel	Version 6.15 rc1
Linux Linux Kernel	Version 6.15 rc2
Linux Linux Kernel	Version 6.15 rc3
Linux Linux Kernel	Version 6.15 rc4
Linux Linux Kernel	Version 6.15 rc5

Configuration B

1 vulnerable

Vulnerable Software	Affected Versions
Debian Debian Linux	Version 11.0

Related CWEs

Improper Locking

The product does not properly acquire or release a lock on a resource, leading to unexpected resource state changes and behaviors.

References (10)

https://git.kernel.org/stable/c/159ca7f18129834b6f4c7eae67de48e96c752fc9

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/3bb6c02d6fe8347ce1785016d135ff539c20043c

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/6c4a5000618a8c44200d455c92e2f2a4db264717

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/84e39f628a3a3333add99076e4d6c8b42b12d3a0

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/a1cad8a3bca41dead9980615d35efc7bff1fd534

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/da33c4167b9cc1266a97215114cb74679f881d0c

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/f06a1a1954527cc4ed086d926c81ff236b2adde9

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/f3cf233c946531a92fe651ff2bd15ebbe60630a7

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://lists.debian.org/debian-lts-announce/2025/08/msg00010.html

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

Timeline

No history available yet.