CVE-2025-38007

Summary

In the Linux kernel, the following vulnerability has been resolved:

HID: uclogic: Add NULL check in uclogic_input_configured()

devm_kasprintf() returns NULL when memory allocation fails. Currently, uclogic_input_configured() does not check for this case, which results in a NULL pointer dereference.

Add NULL check after devm_kasprintf() to prevent this issue.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxf78bb490b16ecb506d4904be4b00bf9aad6588f9 < a9f58479a1a2c6f72907679c4df2f4ed92b05b39affected
LinuxLinux51f49e3927ad545cec0c0afb86856ccacd9f085d < 00d52b2fa6083dd0f5c44f3604cd1bad1f9177dcaffected
LinuxLinuxf283805d984343b2f216e2f4c6c7af265b9542ae < 01b76cc8ca243fc3376b035aa326bbc4f03d384baffected
LinuxLinuxdd613a4e45f8d35f49a63a2064e5308fa5619e29 < ad6caaf29bc26a48b1241ce82561fcbcf0a75aa9affected
LinuxLinuxdd613a4e45f8d35f49a63a2064e5308fa5619e29 < 94e7272b636a0677082e0604609e4c471e0a2cafaffected
LinuxLinuxdd613a4e45f8d35f49a63a2064e5308fa5619e29 < b616453d719ee1b8bf2ea6f6cc6c6258a572a590affected
LinuxLinuxdd613a4e45f8d35f49a63a2064e5308fa5619e29 < bd07f751208ba190f9b0db5e5b7f35d5bb4a8a1eaffected
LinuxLinux4c2707dfee5847dc0b5ecfbe512c29c93832fdc4affected
LinuxLinux58f0d1c0e494a88f301bf455da7df4366f179bbbaffected
LinuxLinux6.1.53 < 6.1.140affected
LinuxLinux6.4.16 < 6.5affected
LinuxLinux6.5.3 < 6.6affected
LinuxLinux6.6affected
LinuxLinux0 < 6.6unaffected
LinuxLinux6.1.140 <= 6.1.*unaffected
LinuxLinux6.6.92 <= 6.6.*unaffected
LinuxLinux6.12.30 <= 6.12.*unaffected
LinuxLinux6.14.8 <= 6.14.*unaffected
LinuxLinux6.15 <= *unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

References