CVE-2025-38610
Published: Aug 19, 2025
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: powercap: dtpm_cpu: Fix NULL pointer dereference in get_pd_power_uw() The get_pd_power_uw() function can crash with a NULL pointer dereference when em_cpu_get() returns NULL. This occurs when a CPU becomes impossible during runtime, causing get_cpu_device() to return NULL, which propagates through em_cpu_get() and leads to a crash when em_span_cpus() dereferences the NULL pointer. Add a NULL check after em_cpu_get() and return 0 if unavailable, matching the existing fallback behavior in __dtpm_cpu_setup(). [ rjw: Drop an excess empty code line ]
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected eb82bace893169b319c563b7f813c58a0a5a9f76 - < 27914f2b795e2b58e9506f281dcdd98fef09d3c2affected eb82bace893169b319c563b7f813c58a0a5a9f76 - < c6ec27091cf5ac05094c1fe3a6ce914cf711a37caffected eb82bace893169b319c563b7f813c58a0a5a9f76 - < 8374ac7d69a57d737e701a851ffe980a0d27d3adaffected eb82bace893169b319c563b7f813c58a0a5a9f76 - < 27e0318f0ea69fcfa32228847debc384ade14578affected eb82bace893169b319c563b7f813c58a0a5a9f76 - < 2fd001a0075ac01dc64a28a8e21226b3d989a91d+1 more versions |
Linux | Linux | affected 5.16unaffected 0 - < 5.16unaffected 6.1.148 - <= 6.1.*unaffected 6.6.102 - <= 6.6.*unaffected 6.12.42 - <= 6.12.*+3 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now