Linux Kernel UFS Vulnerability in Exynos Devices
CVE-2025-37977

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 20 May 2025

What is CVE-2025-37977?

A configuration vulnerability has been identified in the Linux kernel affecting UFS functionality within Exynos devices. When the dma-coherent property is not set, descriptors within the configuration may become non-cacheable, leading to potential mismatches that disable iocc shareability bits. This misconfiguration can result in unstable operation of the UFS, causing random cache-related issues that jeopardize system stability and performance. It is crucial for users and developers to ensure that the dma-coherent property is correctly configured to avoid these complications.

Affected Version(s)

Linux cc52e15397cc5dc773d3c6792b98352d3209f93f < 869749e48115ef944eeabec8e84138908471fa51

Linux cc52e15397cc5dc773d3c6792b98352d3209f93f

References

https://git.kernel.org/stable/c/869749e48115ef944eeabec8e...

https://git.kernel.org/stable/c/f0c6728a6f2e269ebb234a9b5...

https://git.kernel.org/stable/c/f92bb7436802f8eb7ee72dc91...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 20, 2025
Vulnerability Reserved
Apr 16, 2025