Linux Kernel Vulnerability Affecting ASoC: sma1307 by Linux Foundation
CVE-2025-38070

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 18 June 2025

What is CVE-2025-38070?

A vulnerability has been identified in the Linux kernel related to the ASoC: sma1307 subsystem, where variables allocated through kzalloc and devm_kzalloc may point to NULL. This oversight could lead to unexpected system behavior or instability. To mitigate this risk, multiple pointer checks and appropriate cleanup procedures have been introduced, improving overall system security and robustness against potential exploitation.

Affected Version(s)

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 0ec6bd16705fe21d6429d6b8f7981eae2142bba8

Linux 6.14.9 <= 6.14.*

References

https://git.kernel.org/stable/c/f8434b8ba437d3f6cbcd9ffe8...

https://git.kernel.org/stable/c/0ec6bd16705fe21d6429d6b8f...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 18, 2025
Vulnerability Reserved
Apr 16, 2025