CVE-2025-21847
CVE-2025-21847 concerns the Linux kernel ASoC: SOF path — stream-ipc handling. The root cause is a missing NULL check for sps->cstream in sof_ipc_msg_data(), which can lead to a NULL pointer dereference if sps->stream is NULL or cstream is NULL. The issue is mitigated by the published patch...