CVE-2025-38044

Summary

In the Linux kernel, the following vulnerability has been resolved:

media: cx231xx: set device_caps for 417

The video_device for the MPEG encoder did not set device_caps.

Add this, otherwise the video device can't be registered (you get a WARN_ON instead).

Not seen before since currently 417 support is disabled, but I found this while experimenting with it.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux8c3854d03bd7b86e8f36e6d9b07b4a6bc20deccd < 2ad41beb7df3bd63b209842d16765ec59dafe6e4affected
LinuxLinux8c3854d03bd7b86e8f36e6d9b07b4a6bc20deccd < 0884dd3abbe80307a2d4cbdbe5e312be164f8adbaffected
LinuxLinux8c3854d03bd7b86e8f36e6d9b07b4a6bc20deccd < c91447e35b9bea60bda4408c48e7891d14351021affected
LinuxLinux8c3854d03bd7b86e8f36e6d9b07b4a6bc20deccd < 9d1a5be86dbe074bd8dd6bdd63a99d6bb66d5930affected
LinuxLinux8c3854d03bd7b86e8f36e6d9b07b4a6bc20deccd < 5c9eca180a4235abd56cc7f7308ca72128d93dceaffected
LinuxLinux8c3854d03bd7b86e8f36e6d9b07b4a6bc20deccd < 4731d5328f507ae8fd8a57abbca9119ec7a8d665affected
LinuxLinux8c3854d03bd7b86e8f36e6d9b07b4a6bc20deccd < e43fd82bb2110bf9d13d800cdc49cceddfd0ede5affected
LinuxLinux8c3854d03bd7b86e8f36e6d9b07b4a6bc20deccd < a79efc44b51432490538a55b9753a721f7d3ea42affected
LinuxLinux5.3affected
LinuxLinux0 < 5.3unaffected
LinuxLinux5.4.294 <= 5.4.*unaffected
LinuxLinux5.10.238 <= 5.10.*unaffected
LinuxLinux5.15.185 <= 5.15.*unaffected
LinuxLinux6.1.141 <= 6.1.*unaffected
LinuxLinux6.6.93 <= 6.6.*unaffected
LinuxLinux6.12.31 <= 6.12.*unaffected
LinuxLinux6.14.9 <= 6.14.*unaffected
LinuxLinux6.15 <= *unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

References