CVE-2025-23137 cpufreq/amd-pstate: Add missing NULL ptr check in amd_pstate_update

In the Linux kernel, the following vulnerability has been resolved: cpufreq/amd-pstate: Add missing NULL ptr check in amdpstateupdate Check if policy is NULL before dereferencing it in amdpstateupdate...

CVE-2025-23137

In the Linux kernel, the following vulnerability has been resolved: cpufreq/amd-pstate: Add missing NULL ptr check in amdpstateupdate Check if policy is NULL before dereferencing it in amdpstateupdate...

CVE-2025-23136 thermal: int340x: Add NULL check for adev

In the Linux kernel, the following vulnerability has been resolved: thermal: int340x: Add NULL check for adev Not all devices have an ACPI companion fwnode, so adev might be NULL. This is similar to the commit cd2fd6eab480 "platform/x86: int3472: Check for adev == NULL". Add a check for adev not...

CVE-2025-22099 drm: xlnx: zynqmp_dpsub: Add NULL check in zynqmp_audio_init

In the Linux kernel, the following vulnerability has been resolved: drm: xlnx: zynqmpdpsub: Add NULL check in zynqmpaudioinit devmkasprintf calls can return null pointers on failure. But some return values were not checked in zynqmpaudioinit. Add NULL check in zynqmpaudioinit, avoid referencing...

PT-2025-16739 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A vulnerability in the Linux kernel has been resolved. The issue was related to the zynqmp audio init function, where devm kasprintf calls could return null pointers on failure, but so...

PT-2025-16777 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A vulnerability in the Linux kernel has been resolved. The issue was related to a missing NULL pointer check in the amd pstate update function. This function is part of the...

PT-2025-20355

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A vulnerability in the Linux kernel has been resolved by adding a NULL check in the ufshcd mcq compl pending transfer function and a NULL check for the hwq pointer returned by ufshcd mcq...

CVE-2025-21904

In the Linux kernel, the following vulnerability has been resolved: caifvirtio: fix wrong pointer check in cfvprobe delvqs frees virtqueues, therefore cfv-vqtx pointer should be checked for NULL before calling it, not cfv-vdev. Also the current implementation is redundant because the pointer...

AZL-60346 CVE-2025-21904 affecting package kernel for versions less than 6.6.85.1-2

In the Linux kernel, the following vulnerability has been resolved: caifvirtio: fix wrong pointer check in cfvprobe delvqs frees virtqueues, therefore cfv-vqtx pointer should be checked for NULL before calling it, not cfv-vdev. Also the current implementation is redundant because the pointer...

CVE-2025-21982 pinctrl: nuvoton: npcm8xx: Add NULL check in npcm8xx_gpio_fw

In the Linux kernel, the following vulnerability has been resolved: pinctrl: nuvoton: npcm8xx: Add NULL check in npcm8xxgpiofw devmkasprintf calls can return null pointers on failure. But the return values were not checked in npcm8xxgpiofw. Add NULL check in npcm8xxgpiofw, to handle kernel NULL...

CVE-2025-21982

CVE-2025-21982 affects the Linux kernel’s pinctrl nuvoton npcm8xx GPIO firmware path. The issue stems from devm_kasprintf() potentially returning NULL on failure, with the NULL return not being checked in npcm8xx_gpio_fw(), leading to a kernel NULL pointer dereference. A fix adds a NULL-check in ...

CVE-2025-21941 drm/amd/display: Fix null check for pipe_ctx->plane_state in resource_build_scaling_params

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix null check for pipectx-planestate in resourcebuildscalingparams Null pointer dereference issue could occur when pipectx-planestate is null. The fix adds a check to ensure 'pipectx-planestate' is not null befo...

CVE-2025-21937 Bluetooth: Add check for mgmt_alloc_skb() in mgmt_remote_name()

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: Add check for mgmtallocskb in mgmtremotename Add check for the return value of mgmtallocskb in mgmtremotename to prevent null pointer dereference...

CVE-2025-21904 caif_virtio: fix wrong pointer check in cfv_probe()

In the Linux kernel, the following vulnerability has been resolved: caifvirtio: fix wrong pointer check in cfvprobe delvqs frees virtqueues, therefore cfv-vqtx pointer should be checked for NULL before calling it, not cfv-vdev. Also the current implementation is redundant because the pointer...

CVE-2025-21904

CVE-2025-21904 affects the Linux kernel’s caif_virtio path. The vulnerability stems from a wrong pointer check in cfv_probe: del_vqs() frees virtqueues, and the code previously dereferenced cfv->vdev before confirming NULL. The correct check is cfv->vq_tx for NULL prior to del_vqs(). Upstre...

CVE-2025-21904 caif_virtio: fix wrong pointer check in cfv_probe()

In the Linux kernel, the following vulnerability has been resolved: caifvirtio: fix wrong pointer check in cfvprobe delvqs frees virtqueues, therefore cfv-vqtx pointer should be checked for NULL before calling it, not cfv-vdev. Also the current implementation is redundant because the pointer...

CVE-2025-21904

In the Linux kernel, the following vulnerability has been resolved: caifvirtio: fix wrong pointer check in cfvprobe delvqs frees virtqueues, therefore cfv-vqtx pointer should be checked for NULL before calling it, not cfv-vdev. Also the current implementation is redundant because the pointer...

CVE-2025-21904 caif_virtio: fix wrong pointer check in cfv_probe()

In the Linux kernel, the following vulnerability has been resolved: caifvirtio: fix wrong pointer check in cfvprobe delvqs frees virtqueues, therefore cfv-vqtx pointer should be checked for NULL before calling it, not cfv-vdev. Also the current implementation is redundant because the pointer...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an incorrect pointer check in the cfvprobe function...

CVE-2025-21870

In the Linux kernel, the following vulnerability has been resolved: ASoC: SOF: ipc4-topology: Harden loops for looking up ALH copiers Other, non DAI copier widgets could have the same stream name sname as the ALH copier and in that case the copier-data is NULL, no alhdata is attached, which could...