CVE-2025-22066

Summary

In the Linux kernel, the following vulnerability has been resolved:

ASoC: imx-card: Add NULL check in imx_card_probe()

devm_kasprintf() returns NULL when memory allocation fails. Currently, imx_card_probe() does not check for this case, which results in a NULL pointer dereference.

Add NULL check after devm_kasprintf() to prevent this issue.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxaa736700f42fa0813e286ca2f9274ffaa25163b9 < 018e6cf2503e60087747b0ebc190e18b3640766faffected
LinuxLinuxaa736700f42fa0813e286ca2f9274ffaa25163b9 < 38253922a89a742e7e622f626b41c64388367361affected
LinuxLinuxaa736700f42fa0813e286ca2f9274ffaa25163b9 < e283a5bf4337a7300ac5e6ae363cc8b242a0b4b7affected
LinuxLinuxaa736700f42fa0813e286ca2f9274ffaa25163b9 < 4d8458e48ff135bddc402ad79821dc058ea163d0affected
LinuxLinuxaa736700f42fa0813e286ca2f9274ffaa25163b9 < b01700e08be99e3842570142ec5973ccd7e73eafaffected
LinuxLinuxaa736700f42fa0813e286ca2f9274ffaa25163b9 < dd2bbb9564d0d24a2643ad90008a79840368c4b4affected
LinuxLinuxaa736700f42fa0813e286ca2f9274ffaa25163b9 < 93d34608fd162f725172e780b1c60cc93a920719affected
LinuxLinux5.14affected
LinuxLinux0 < 5.14unaffected
LinuxLinux5.15.180 <= 5.15.*unaffected
LinuxLinux6.1.134 <= 6.1.*unaffected
LinuxLinux6.6.87 <= 6.6.*unaffected
LinuxLinux6.12.23 <= 6.12.*unaffected
LinuxLinux6.13.11 <= 6.13.*unaffected
LinuxLinux6.14.2 <= 6.14.*unaffected
LinuxLinux6.15 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References