{"id":"CVE-2025-37866","summary":"mlxbf-bootctl: use sysfs_emit_at() in secure_boot_fuse_state_show()","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nmlxbf-bootctl: use sysfs_emit_at() in secure_boot_fuse_state_show()\n\nA warning is seen when running the latest kernel on a BlueField SOC:\n[251.512704] ------------[ cut here ]------------\n[251.512711] invalid sysfs_emit: buf:0000000003aa32ae\n[251.512720] WARNING: CPU: 1 PID: 705264 at fs/sysfs/file.c:767 sysfs_emit+0xac/0xc8\n\nThe warning is triggered because the mlxbf-bootctl driver invokes\n\"sysfs_emit()\" with a buffer pointer that is not aligned to the\nstart of the page. The driver should instead use \"sysfs_emit_at()\"\nto support non-zero offsets into the destination buffer.","modified":"2026-04-02T12:47:34.318458Z","published":"2025-05-09T06:43:56.128Z","database_specific":{"cna_assigner":"Linux","osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/37xxx/CVE-2025-37866.json"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/5e1dcc5bfd7a2896178c604bc69d6ab9650967da"},{"type":"WEB","url":"https://git.kernel.org/stable/c/b129005ddfc0e6daf04a6d3b928a9e474f9b3918"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/37xxx/CVE-2025-37866.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-37866"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"9886f575de5aefcfab537467c72e5176e5301df0"},{"fixed":"5e1dcc5bfd7a2896178c604bc69d6ab9650967da"},{"fixed":"b129005ddfc0e6daf04a6d3b928a9e474f9b3918"}]}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-37866.json"}}],"schema_version":"1.7.5"}