CVE-2025-40098
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
ALSA: hda: cs35l41: Fix NULL pointer dereference in cs35l41_get_acpi_mute_state()
Return value of a function acpi_evaluate_dsm() is dereferenced without checking for NULL, but it is usually checked for this function.
acpi_evaluate_dsm() may return NULL, when acpi_evaluate_object() returns acpi_status other than ACPI_SUCCESS, so add a check to prevent the crach.
Found by Linux Verification Center (linuxtesting.org) with SVACE.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 447106e92a0c86c332d40710436f38f64c322cd6 < b518386db2b993d786c431caa9f46ce063c5cb05 | affected |
| Linux | Linux | 447106e92a0c86c332d40710436f38f64c322cd6 < 8527bbb33936340525a3504a00932b2f8fd75754 | affected |
| Linux | Linux | 6.7 | affected |
| Linux | Linux | 0 < 6.7 | unaffected |
| Linux | Linux | 6.17.5 <= 6.17.* | unaffected |
| Linux | Linux | 6.18 <= * | unaffected |
Weaknesses
References
- https://git.kernel.org/stable/c/b518386db2b993d786c431caa9f46ce063c5cb05
- https://git.kernel.org/stable/c/8527bbb33936340525a3504a00932b2f8fd75754
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.