Soundwire Vulnerability in Dragonboard 845c by Qualcomm
CVE-2025-38486

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 28 July 2025

What is CVE-2025-38486?

A vulnerability in the Soundwire subsystem of the Linux kernel has been identified, specifically affecting the Dragonboard 845c platform. The root cause stems from a reverted patch that introduced inconsistencies in memory handling and array indexing. Notably, the faulty code manipulates the ctrl->pconfig[] structure incorrectly, leading to memory corruption and potential kernel panic, characterized by an unexpected kernel BRK exception at EL1. Additionally, the issues reported highlight a misalignment in the expected number of elements within the tx_ch[] array versus the allocated memory in the ctrl->pconfig[] array. This vulnerability not only compromises the stability of the Dragonboard 845c but also raises concerns about the reliability of future patches and updates within the Soundwire framework.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch