Linux Kernel Vulnerability in Sierra USB Driver
CVE-2025-38474

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
28 July 2025

What is CVE-2025-38474?

A vulnerability exists in the Sierra USB driver of the Linux kernel, where the driver inadequately checks for a status endpoint. While it verifies the presence of three endpoints and checks that two are bulk input/output, it fails to ensure that the third endpoint functions as an interrupt input. This oversight could lead to unexpected behaviors or security issues. The resolution requires rectifying the omission to enhance the driver's integrity and prevent potential exploitation.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux eb4fd8cd355c8ec425a12ec6cbdac614e8a4819d < 0a263ccb905b4ae2af381cd4280bd8d2477b98b8

Linux eb4fd8cd355c8ec425a12ec6cbdac614e8a4819d < 5408cc668e596c81cdd29e137225432aa40d1785

Linux eb4fd8cd355c8ec425a12ec6cbdac614e8a4819d

References

https://git.kernel.org/stable/c/0a263ccb905b4ae2af381cd42...
https://git.kernel.org/stable/c/5408cc668e596c81cdd29e137...
https://git.kernel.org/stable/c/a6a238c4126eb3ddb495d3f96...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.