Linux Kernel Vulnerability in HDMI Audio Driver by Vendor
CVE-2025-38130

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 3 July 2025

What is CVE-2025-38130?

A vulnerability in the Linux kernel affects HDMI audio drivers, where a null function pointer is called during driver removal, leading to a system error. This occurs when the audio helper attempts to execute a callback function that hasn't been properly set, potentially causing application crashes. The issue has been fixed by ensuring the callback is only invoked when the pointer is not null, thereby preventing such runtime errors.

Affected Version(s)

Linux baf616647fe6f857a0cf2187197de31e9bb17a71 < 933f3eab1d489af8d734bff855b10d29dd5968a4

Linux baf616647fe6f857a0cf2187197de31e9bb17a71

Linux 6.14

References

https://git.kernel.org/stable/c/933f3eab1d489af8d734bff85...

https://git.kernel.org/stable/c/be9b3f9a54101c19226c25ba7...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 3, 2025
Vulnerability Reserved
Apr 16, 2025