CVE-2025-40013

Summary

In the Linux kernel, the following vulnerability has been resolved:

ASoC: qcom: audioreach: fix potential null pointer dereference

It is possible that the topology parsing function audioreach_widget_load_module_common() could return NULL or an error pointer. Add missing NULL check so that we do not dereference it.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux36ad9bf1d93d66b901342eab9f8ed6c1537655a6 < 9c1ad4192f3d2fc85339718a6252cb3337848f7baffected
LinuxLinux36ad9bf1d93d66b901342eab9f8ed6c1537655a6 < 70e1e5fe9f7e05ff831b56ebc02543e7811b8e18affected
LinuxLinux36ad9bf1d93d66b901342eab9f8ed6c1537655a6 < 4dda55d04caac3b4102c26e29b1c27fa35636be3affected
LinuxLinux36ad9bf1d93d66b901342eab9f8ed6c1537655a6 < 8f9c9fafc0e7a73bbff58954d171c016ddee1734affected
LinuxLinux36ad9bf1d93d66b901342eab9f8ed6c1537655a6 < ef08ce6304d30b5778035d07b04514cb70839983affected
LinuxLinux36ad9bf1d93d66b901342eab9f8ed6c1537655a6 < 8318e04ab2526b155773313b66a1542476ce1106affected
LinuxLinux5.16affected
LinuxLinux0 < 5.16unaffected
LinuxLinux6.1.156 <= 6.1.*unaffected
LinuxLinux6.6.110 <= 6.6.*unaffected
LinuxLinux6.12.51 <= 6.12.*unaffected
LinuxLinux6.16.11 <= 6.16.*unaffected
LinuxLinux6.17.1 <= 6.17.*unaffected
LinuxLinux6.18 <= *unaffected

Weaknesses

References