CVE-2025-38381

Published: Jul 25, 2025

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: Input: cs40l50-vibra - fix potential NULL dereference in cs40l50_upload_owt() The cs40l50_upload_owt() function allocates memory via kmalloc() without checking for allocation failure, which could lead to a NULL pointer dereference. Return -ENOMEM in case allocation fails.

Vendor	Product	Versions
Linux	Linux	affected `c38fe1bb5d21c2ce0857965ee06174ee587d6b42 - < ea20568895c1122f15b6fc9e8d02c6cbe22964f8` affected `c38fe1bb5d21c2ce0857965ee06174ee587d6b42 - < e87fc697fa4be5164e47cfba4ddd4732499adc60` affected `c38fe1bb5d21c2ce0857965ee06174ee587d6b42 - < 4cf65845fdd09d711fc7546d60c9abe010956922`
Linux	Linux	affected `6.11` unaffected `0 - < 6.11` unaffected `6.12.37 - <= 6.12.` unaffected `6.15.6 - <= 6.15.` unaffected `6.16 - <= *`

References

https://git.kernel.org/stable/c/ea20568895c1122f15b6fc9e8d02c6cbe22964f8

https://git.kernel.org/stable/c/e87fc697fa4be5164e47cfba4ddd4732499adc60

https://git.kernel.org/stable/c/4cf65845fdd09d711fc7546d60c9abe010956922

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-38381

Description

Affected Products

References