CVE-2025-68205

Summary

In the Linux kernel, the following vulnerability has been resolved:

ALSA: hda/hdmi: Fix breakage at probing nvhdmi-mcp driver

After restructuring and splitting the HDMI codec driver code, each HDMI codec driver contains the own build_controls and build_pcms ops. A copy-n-paste error put the wrong entries for nvhdmi-mcp driver; both build_controls and build_pcms are swapped. Unfortunately both callbacks have the very same form, and the compiler didn't complain it, either. This resulted in a NULL dereference because the PCM instance hasn't been initialized at calling the build_controls callback.

Fix it by passing the proper entries.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxad781b550f9a8829e3dae4bd3d18c4a126a53d04 < d2aed6fac1148528181affb781aa683d6569042baffected
LinuxLinuxad781b550f9a8829e3dae4bd3d18c4a126a53d04 < 82420bd4e17bdaba8453fbf9e10c58c9ed0c9727affected
LinuxLinux6.17affected
LinuxLinux0 < 6.17unaffected
LinuxLinux6.17.9 <= 6.17.*unaffected
LinuxLinux6.18 <= *unaffected

Weaknesses

References