CVE-2025-38541

Summary

In the Linux kernel, the following vulnerability has been resolved:

wifi: mt76: mt7925: Fix null-ptr-deref in mt7925_thermal_init()

devm_kasprintf() returns NULL on error. Currently, mt7925_thermal_init() does not check for this case, which results in a NULL pointer dereference.

Add NULL check after devm_kasprintf() to prevent this issue.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux396e41a74a88654f23e36c46d2995752c91654a5 < 1bbdf4213711bb6dc365e7628430a63dd3280794affected
LinuxLinux396e41a74a88654f23e36c46d2995752c91654a5 < 2e99e9b34ece0b6d3e82cb757e9f60fa414da999affected
LinuxLinux396e41a74a88654f23e36c46d2995752c91654a5 < 03ee8f73801a8f46d83dfc2bf73fb9ffa5a21602affected
LinuxLinux6.9affected
LinuxLinux0 < 6.9unaffected
LinuxLinux6.12.39 <= 6.12.*unaffected
LinuxLinux6.15.7 <= 6.15.*unaffected
LinuxLinux6.16 <= *unaffected

Weaknesses

References