CVE-2025-38693
Published: Sep 4, 2025
Modified: May 12, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: media: dvb-frontends: w7090p: fix null-ptr-deref in w7090p_tuner_write_serpar and w7090p_tuner_read_serpar In w7090p_tuner_write_serpar, msg is controlled by user. When msg[0].buf is null and msg[0].len is zero, former checks on msg[0].buf would be passed. If accessing msg[0].buf[2] without sanity check, null pointer deref would happen. We add check on msg[0].len to prevent crash. Similar commit: commit 0ed554fd769a ("media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer()")
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 713d54a8bd812229410a1902cd9b332a2a27af9f - < 7a41ecfc3415ebe3b4c44f96b3337691dcf431a3affected 713d54a8bd812229410a1902cd9b332a2a27af9f - < b3d77a3fc71c084575d3df4ec6544b3fb6ce587daffected 713d54a8bd812229410a1902cd9b332a2a27af9f - < 17b30e5ded062bd74f8ca6f317e1d415a8680665affected 713d54a8bd812229410a1902cd9b332a2a27af9f - < 454a443eaa792c8865c861a282fe6d4f596abc3aaffected 713d54a8bd812229410a1902cd9b332a2a27af9f - < 6bbaec6a036940e22318f0454b50b8000845ab59+4 more versions |
Linux | Linux | affected 2.6.39unaffected 0 - < 2.6.39unaffected 5.4.297 - <= 5.4.*unaffected 5.10.241 - <= 5.10.*unaffected 5.15.190 - <= 5.15.*+6 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now