CVE-2025-37937

low-risk

Published 2025-05-20

In the Linux kernel, the following vulnerability has been resolved: objtool, media: dib8000: Prevent divide-by-zero in dib8000_set_dds() If dib8000_set_dds()'s call to dib8000_read32() returns zero, the result is a divide-by-zero. Prevent that from happening. Fixes the following warning with an UBSAN kernel: drivers/media/dvb-frontends/dib8000.o: warning: objtool: dib8000_tune() falls through to next function dib8096p_cfg_DibRx()

Do I need to act?

0.07% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 5.5/10 Medium

LOCAL / LOW complexity

Affected Products (2)

Linux Kernel

Debian Linux

Affected Vendors

Debian Linux

References (10)

Patch https://git.kernel.org/stable/c/536f7f3595ef8187cfa9ea50d7d24fcf4e84e166

Patch https://git.kernel.org/stable/c/6cfe46036b163e5a0f07c6b705b518148e1a8b2f

Patch https://git.kernel.org/stable/c/75b42dfe87657ede3da3f279bd6b1b16d69af954

Patch https://git.kernel.org/stable/c/976a85782246a29ba0f6d411a7a4f524cb9ea987

Patch https://git.kernel.org/stable/c/9b76b198cf209797abcb1314c18ddeb90fe0827b

Patch https://git.kernel.org/stable/c/b9249da6b0ed56269d4f21850df8e5b35dab50bd

Patch https://git.kernel.org/stable/c/c8430e72b99936c206b37a8e2daebb3f8df7f2d8

Patch https://git.kernel.org/stable/c/cd80277f652138d2619f149f86ae6d17bce721d1

Patch https://git.kernel.org/stable/c/e63d465f59011dede0a0f1d21718b59a64c3ff5c

Third Party Advisory https://lists.debian.org/debian-lts-announce/2025/05/msg00045.html

/ 100

low-risk

Severity 18/34 · Moderate

Exploitability 0/34 · Minimal

Exposure 7/34 · Low