CVE-2025-38694
In CVE-2025-38694, the Linux kernel media/dvb-frontends: dib7090p driver could dereference a null pointer in dib7090p_rw_on_apb() when msg[0].buf or msg[1].buf lengths are zero or null, because checks on buf were bypassed if buf was null and len was zero. The fix adds sanity checks on msg[0].len ...