Linux Kernel Vulnerability in ST Sensors: Use of Uninitialized Device Structures
CVE-2025-38531

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 16 August 2025

What is CVE-2025-38531?

A vulnerability in the Linux kernel affects ST sensors due to the use of uninitialized device structures in several probe functions. This issue can trigger a kernel panic in specific scenarios, particularly when device power management calls fail, leading to improper error handling. This vulnerability has been addressed to prevent unintended consequences during probe operations, ensuring better stability and reliability for systems utilizing ST sensors.

Affected Version(s)

Linux 4dff754876959b3f3b354800089bc8aaa3ec1d95

Linux 4dff754876959b3f3b354800089bc8aaa3ec1d95 < 610615c9668037e3eca11132063b93b2d945af13

Linux 4dff754876959b3f3b354800089bc8aaa3ec1d95 < 3297a9016a45144883ec990bd4bd5b1d79cafb46

References

https://git.kernel.org/stable/c/f9d4b618f1b9e6d760cc7c150...

https://git.kernel.org/stable/c/610615c9668037e3eca111320...

https://git.kernel.org/stable/c/3297a9016a45144883ec990bd...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 16, 2025
Vulnerability Reserved
Apr 16, 2025

CVE-2025-38531 Data

JSON