CVE-2025-38143

Summary

In the Linux kernel, the following vulnerability has been resolved:

backlight: pm8941: Add NULL check in wled_configure()

devm_kasprintf() returns NULL when memory allocation fails. Currently, wled_configure() does not check for this case, which results in a NULL pointer dereference.

Add NULL check after devm_kasprintf() to prevent this issue.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxf86b77583d88c8402e8d89a339d96f847318f8a8 < 6a56446595730a5e3f06a30902e23cb037d28146affected
LinuxLinuxf86b77583d88c8402e8d89a339d96f847318f8a8 < 9d06ac32c202142da40904180f2669ed4f5073acaffected
LinuxLinuxf86b77583d88c8402e8d89a339d96f847318f8a8 < 21528806560510458378ea52c37e35b0773afaeaaffected
LinuxLinuxf86b77583d88c8402e8d89a339d96f847318f8a8 < fde314445332015273c8f51d2659885c606fe135affected
LinuxLinuxf86b77583d88c8402e8d89a339d96f847318f8a8 < 1be2000b703b02e149f8f2061054489f6c18c972affected
LinuxLinuxf86b77583d88c8402e8d89a339d96f847318f8a8 < 4a715be3fe80b68fa55cb3569af3d294be101626affected
LinuxLinuxf86b77583d88c8402e8d89a339d96f847318f8a8 < e12d3e1624a02706cdd3628bbf5668827214fa33affected
LinuxLinux5.0affected
LinuxLinux0 < 5.0unaffected
LinuxLinux5.10.239 <= 5.10.*unaffected
LinuxLinux5.15.186 <= 5.15.*unaffected
LinuxLinux6.1.142 <= 6.1.*unaffected
LinuxLinux6.6.94 <= 6.6.*unaffected
LinuxLinux6.12.34 <= 6.12.*unaffected
LinuxLinux6.15.3 <= 6.15.*unaffected
LinuxLinux6.16 <= *unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

References