CVE-2025-68238

Summary

In the Linux kernel, the following vulnerability has been resolved:

mtd: rawnand: cadence: fix DMA device NULL pointer dereference

The DMA device pointer dma_dev was being dereferenced before ensuring that cdns_ctrl->dmac is properly initialized.

Move the assignment of dma_dev after successfully acquiring the DMA channel to ensure the pointer is valid before use.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux0cae7c285f4771a9927ef592899234d307aea5d4 < 2178b0255eae108bb10e5e99658b28641bc06f43affected
LinuxLinux099a316518508be7c57de4134ef919b2dea948ce < 9c58c64ec41290c12490ca7e1df45013fbbb41fdaffected
LinuxLinuxe630d32162a8aab92d4aaebae0a8d93039257593 < e282a4fdf3c6ee842a720010a8b5f7d77bedd126affected
LinuxLinuxad9393467fbd788ac2b8a01e492e45ab1b68a1b1 < b146e0b085d9d6bfe838e0a15481cba7d093c67faffected
LinuxLinux0ce5416863965ddd86e066484a306867cf1e01a8 < 0c635241a62f2f5da1b48bfffae226d1f86a76efaffected
LinuxLinuxd76d22b5096c5b05208fd982b153b3f182350b19 < 0c2a43cb43786011b48eeab6093db14888258c6baffected
LinuxLinuxd76d22b5096c5b05208fd982b153b3f182350b19 < 5c56bf214af85ca042bf97f8584aab2151035840affected
LinuxLinuxa33c7492dcdf804b705b6c21018a481414d48038affected
LinuxLinux5.10.235 < 5.10.247affected
LinuxLinux5.15.179 < 5.15.197affected
LinuxLinux6.1.130 < 6.1.159affected
LinuxLinux6.6.80 < 6.6.118affected
LinuxLinux6.12.17 < 6.12.60affected
LinuxLinux6.13.5 < 6.14affected
LinuxLinux6.14affected
LinuxLinux0 < 6.14unaffected
LinuxLinux5.10.247 <= 5.10.*unaffected
LinuxLinux5.15.197 <= 5.15.*unaffected
LinuxLinux6.1.159 <= 6.1.*unaffected
LinuxLinux6.6.118 <= 6.6.*unaffected
LinuxLinux6.12.60 <= 6.12.*unaffected
LinuxLinux6.17.10 <= 6.17.*unaffected
LinuxLinux6.18 <= *unaffected

Weaknesses

References