CVE-2025-38706
Published: Sep 4, 2025
Modified: May 12, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: ASoC: core: Check for rtd == NULL in snd_soc_remove_pcm_runtime() snd_soc_remove_pcm_runtime() might be called with rtd == NULL which will leads to null pointer dereference. This was reproduced with topology loading and marking a link as ignore due to missing hardware component on the system. On module removal the soc_tplg_remove_link() would call snd_soc_remove_pcm_runtime() with rtd == NULL since the link was ignored, no runtime was created.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 50cd9b5317d5593d0a33f4227f56ddcc1bf66604 - < 8b465bedc2b417fd27c1d1ab7122882b4b60b1a0affected 50cd9b5317d5593d0a33f4227f56ddcc1bf66604 - < 82ba7b8cf9f6e3bf392a9f08ba3d1c0b200ccb94affected 50cd9b5317d5593d0a33f4227f56ddcc1bf66604 - < 7f8fc03712194fd4e2df28af7f7f7a38205934efaffected 50cd9b5317d5593d0a33f4227f56ddcc1bf66604 - < 41f53afe53a57a7c50323f99424b598190acf192affected 50cd9b5317d5593d0a33f4227f56ddcc1bf66604 - < 2fce20decc6a83f16dd73744150c4e7ea6c97c21+3 more versions |
Linux | Linux | affected 5.6unaffected 0 - < 5.6unaffected 5.10.241 - <= 5.10.*unaffected 5.15.190 - <= 5.15.*unaffected 6.1.149 - <= 6.1.*+5 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now