CVE-2025-37793

Published: May 1, 2025

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: ASoC: Intel: avs: Fix null-ptr-deref in avs_component_probe() devm_kasprintf() returns NULL when memory allocation fails. Currently, avs_component_probe() does not check for this case, which results in a NULL pointer dereference.

Vendor	Product	Versions
Linux	Linux	affected `739c031110da9ba966b0189fa25a2a1c0d42263c - < aaa93b8846101461de815759d39979661b82d5a5` affected `739c031110da9ba966b0189fa25a2a1c0d42263c - < 23fde311ea1d0a6c36bf92ce48b90b77d0ece1a4` affected `739c031110da9ba966b0189fa25a2a1c0d42263c - < c2825073271b6f15e669a424b363612082494863` affected `739c031110da9ba966b0189fa25a2a1c0d42263c - < 95f723cf141b95e3b3a5b92cf2ea98a863fe7275`
Linux	Linux	affected `6.6` unaffected `0 - < 6.6` unaffected `6.6.88 - <= 6.6.` unaffected `6.12.25 - <= 6.12.` unaffected `6.14.4 - <= 6.14.*` +1 more versions

References

https://git.kernel.org/stable/c/aaa93b8846101461de815759d39979661b82d5a5

https://git.kernel.org/stable/c/23fde311ea1d0a6c36bf92ce48b90b77d0ece1a4

https://git.kernel.org/stable/c/c2825073271b6f15e669a424b363612082494863

https://git.kernel.org/stable/c/95f723cf141b95e3b3a5b92cf2ea98a863fe7275

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-37793

Description

Affected Products

References