CVE-2025-38275
Published: Jul 10, 2025
Modified: May 23, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: phy: qcom-qmp-usb: Fix an NULL vs IS_ERR() bug The qmp_usb_iomap() helper function currently returns the raw result of devm_ioremap() for non-exclusive mappings. Since devm_ioremap() may return a NULL pointer and the caller only checks error pointers with IS_ERR(), NULL could bypass the check and lead to an invalid dereference. Fix the issue by checking if devm_ioremap() returns NULL. When it does, qmp_usb_iomap() now returns an error pointer via IOMEM_ERR_PTR(-ENOMEM), ensuring safe and consistent error handling.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected a5d6b1ac56cbd6b5850a3a54e35f1cb71e8e8cdd - < 0b979a409e40457ca1b5cb48755d1f34eee58805affected a5d6b1ac56cbd6b5850a3a54e35f1cb71e8e8cdd - < 127dfb4f1c5a2b622039c5d203f321380ea36665affected a5d6b1ac56cbd6b5850a3a54e35f1cb71e8e8cdd - < 5072c1749197fc28b27d7efc0d80320d7cac9572affected a5d6b1ac56cbd6b5850a3a54e35f1cb71e8e8cdd - < 0c33117f00c8c5363c22676931b22ae5041f7603affected a5d6b1ac56cbd6b5850a3a54e35f1cb71e8e8cdd - < d14402a38c2d868cacb1facaf9be908ca6558e59+2 more versions |
Linux | Linux | affected 6.1unaffected 0 - < 6.1unaffected 6.1.142 - <= 6.1.*unaffected 6.6.94 - <= 6.6.*unaffected 6.12.34 - <= 6.12.*+2 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now