CVE-2025-38301

Summary

In the Linux kernel, the following vulnerability has been resolved:

nvmem: zynqmp_nvmem: unbreak driver after cleanup

Commit 29be47fcd6a0 ("nvmem: zynqmp_nvmem: zynqmp_nvmem_probe cleanup") changed the driver to expect the device pointer to be passed as the "context", but in nvmem the context parameter comes from nvmem_config.priv which is never set - Leading to null pointer exceptions when the device is accessed.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux29be47fcd6a06ea2e79eeeca6e69ad1e23254a69 < c8bb1bcea877446f86922a8fd1661b8c07d90e5caffected
LinuxLinux29be47fcd6a06ea2e79eeeca6e69ad1e23254a69 < 3728101f56ef54425a11027a3ddc2c3941d60b71affected
LinuxLinux29be47fcd6a06ea2e79eeeca6e69ad1e23254a69 < fe8abdd175d7b547ae1a612757e7902bcd62e9cfaffected
LinuxLinux6.9affected
LinuxLinux0 < 6.9unaffected
LinuxLinux6.12.34 <= 6.12.*unaffected
LinuxLinux6.15.3 <= 6.15.*unaffected
LinuxLinux6.16 <= *unaffected

Weaknesses

References