{"id":"CVE-2025-37808","summary":"crypto: null - Use spin lock instead of mutex","details":"In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: null - Use spin lock instead of mutex\n\nAs the null algorithm may be freed in softirq context through\naf_alg, use spin locks instead of mutexes to protect the default\nnull algorithm.","modified":"2026-05-28T03:55:20.769598375Z","published":"2025-05-08T06:26:06.886Z","database_specific":{"cna_assigner":"Linux","osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/37xxx/CVE-2025-37808.json"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/0486de3c1b8223138dcc614846bd76364f758de6"},{"type":"WEB","url":"https://git.kernel.org/stable/c/1b66a5920b7fc7cc6251192a3fcad115b6d75dd5"},{"type":"WEB","url":"https://git.kernel.org/stable/c/1dd4a8561d85dea545cf93f56efc48df8176e218"},{"type":"WEB","url":"https://git.kernel.org/stable/c/8cf2945512a8c0ef74ddd5b5a4f6b6a2fb1a4efb"},{"type":"WEB","url":"https://git.kernel.org/stable/c/dcc47a028c24e793ce6d6efebfef1a1e92f80297"},{"type":"WEB","url":"https://git.kernel.org/stable/c/e27244cbe10658a66b8775be7f0acc4ad2f618d6"},{"type":"WEB","url":"https://git.kernel.org/stable/c/e307c54ac8198bf09652c72603ba6e6d97798410"},{"type":"WEB","url":"https://git.kernel.org/stable/c/f7a5a5c8e1ec16a4b2041398abe95de0e14572ef"},{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2025/05/msg00030.html"},{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2025/05/msg00045.html"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/37xxx/CVE-2025-37808.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-37808"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"330234638e16b7b95e8e5e6be719a61a93f074b8"},{"fixed":"f7a5a5c8e1ec16a4b2041398abe95de0e14572ef"},{"fixed":"e307c54ac8198bf09652c72603ba6e6d97798410"},{"fixed":"1dd4a8561d85dea545cf93f56efc48df8176e218"},{"fixed":"e27244cbe10658a66b8775be7f0acc4ad2f618d6"},{"fixed":"1b66a5920b7fc7cc6251192a3fcad115b6d75dd5"},{"fixed":"0486de3c1b8223138dcc614846bd76364f758de6"},{"fixed":"8cf2945512a8c0ef74ddd5b5a4f6b6a2fb1a4efb"},{"fixed":"dcc47a028c24e793ce6d6efebfef1a1e92f80297"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-37808.json"}},{"package":{"name":"Kernel","ecosystem":"Linux"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"4.2.0"},{"fixed":"5.4.293"}]},{"type":"ECOSYSTEM","events":[{"introduced":"5.5.0"},{"fixed":"5.10.237"}]},{"type":"ECOSYSTEM","events":[{"introduced":"5.11.0"},{"fixed":"5.15.181"}]},{"type":"ECOSYSTEM","events":[{"introduced":"5.16.0"},{"fixed":"6.1.136"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.2.0"},{"fixed":"6.6.89"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.7.0"},{"fixed":"6.12.26"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.13.0"},{"fixed":"6.14.5"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-37808.json"}}],"schema_version":"1.7.5"}