CVE-2025-38301

Published: Jul 10, 2025

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: nvmem: zynqmp_nvmem: unbreak driver after cleanup Commit 29be47fcd6a0 ("nvmem: zynqmp_nvmem: zynqmp_nvmem_probe cleanup") changed the driver to expect the device pointer to be passed as the "context", but in nvmem the context parameter comes from nvmem_config.priv which is never set - Leading to null pointer exceptions when the device is accessed.

Vendor	Product	Versions
Linux	Linux	affected `29be47fcd6a06ea2e79eeeca6e69ad1e23254a69 - < c8bb1bcea877446f86922a8fd1661b8c07d90e5c` affected `29be47fcd6a06ea2e79eeeca6e69ad1e23254a69 - < 3728101f56ef54425a11027a3ddc2c3941d60b71` affected `29be47fcd6a06ea2e79eeeca6e69ad1e23254a69 - < fe8abdd175d7b547ae1a612757e7902bcd62e9cf`
Linux	Linux	affected `6.9` unaffected `0 - < 6.9` unaffected `6.12.34 - <= 6.12.` unaffected `6.15.3 - <= 6.15.` unaffected `6.16 - <= *`

References

https://git.kernel.org/stable/c/c8bb1bcea877446f86922a8fd1661b8c07d90e5c

https://git.kernel.org/stable/c/3728101f56ef54425a11027a3ddc2c3941d60b71

https://git.kernel.org/stable/c/fe8abdd175d7b547ae1a612757e7902bcd62e9cf

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-38301

Description

Affected Products

References