In the Linux kernel, the following vulnerability has been resolved:
Input: cs40l50-vibra - fix potential NULL dereference in cs40l50_upload_owt()
The cs40l50_upload_owt() function allocates memory via kmalloc()
without checking for allocation failure, which could lead to a
NULL pointer dereference.
Return -ENOMEM in case allocation fails.
References
Configurations
Configuration 1 (hide)
|
History
19 Nov 2025, 20:05
| Type | Values Removed | Values Added |
|---|---|---|
| References | () https://git.kernel.org/stable/c/4cf65845fdd09d711fc7546d60c9abe010956922 - Patch | |
| References | () https://git.kernel.org/stable/c/e87fc697fa4be5164e47cfba4ddd4732499adc60 - Patch | |
| References | () https://git.kernel.org/stable/c/ea20568895c1122f15b6fc9e8d02c6cbe22964f8 - Patch | |
| First Time |
Linux linux Kernel
Linux |
|
| CWE | CWE-476 | |
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 5.5 |
| CPE | cpe:2.3:o:linux:linux_kernel:6.16:rc2:*:*:*:*:*:* cpe:2.3:o:linux:linux_kernel:6.16:rc1:*:*:*:*:*:* cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* cpe:2.3:o:linux:linux_kernel:6.16:rc3:*:*:*:*:*:* cpe:2.3:o:linux:linux_kernel:6.16:rc4:*:*:*:*:*:* |
Information
Published : 2025-07-25 13:15
Updated : 2025-11-19 20:05
NVD link : CVE-2025-38381
Mitre link : CVE-2025-38381
CVE.ORG link : CVE-2025-38381
JSON object : View
Products Affected
linux
- linux_kernel
CWE
CWE-476
NULL Pointer Dereference