CVE-2025-38629
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
ALSA: usb: scarlett2: Fix missing NULL check
scarlett2_input_select_ctl_info() sets up the string arrays allocated via kasprintf(), but it misses NULL checks, which may lead to NULL dereference Oops. Let's add the proper NULL check.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 8eba063b5b2b498ddd01ea6f29fc9b12368c3d53 < d558db85920b124bac36f8a7ddc5de0aa7491bdd | affected |
| Linux | Linux | 8eba063b5b2b498ddd01ea6f29fc9b12368c3d53 < 2c735fcaee81ad8056960659dc9dc460891e76b0 | affected |
| Linux | Linux | 8eba063b5b2b498ddd01ea6f29fc9b12368c3d53 < df485a4b2b3ee5b35c80f990beb554e38a8a5fb1 | affected |
| Linux | Linux | 6.13 | affected |
| Linux | Linux | 0 < 6.13 | unaffected |
| Linux | Linux | 6.15.10 <= 6.15.* | unaffected |
| Linux | Linux | 6.16.1 <= 6.16.* | unaffected |
| Linux | Linux | 6.17 <= * | unaffected |
Weaknesses
References
- https://git.kernel.org/stable/c/d558db85920b124bac36f8a7ddc5de0aa7491bdd
- https://git.kernel.org/stable/c/2c735fcaee81ad8056960659dc9dc460891e76b0
- https://git.kernel.org/stable/c/df485a4b2b3ee5b35c80f990beb554e38a8a5fb1
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.