Linux Kernel Vulnerability in ST Sensors: Use of Uninitialized Device Structures
CVE-2025-38531

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
16 August 2025

What is CVE-2025-38531?

A vulnerability in the Linux kernel affects ST sensors due to the use of uninitialized device structures in several probe functions. This issue can trigger a kernel panic in specific scenarios, particularly when device power management calls fail, leading to improper error handling. This vulnerability has been addressed to prevent unintended consequences during probe operations, ensuring better stability and reliability for systems utilizing ST sensors.

Affected Version(s)

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 610615c9668037e3eca11132063b93b2d945af13

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 3297a9016a45144883ec990bd4bd5b1d79cafb46

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 9f92e93e257b33e73622640a9205f8642ec16ddd

References

https://git.kernel.org/stable/c/610615c9668037e3eca111320...
https://git.kernel.org/stable/c/3297a9016a45144883ec990bd...
https://git.kernel.org/stable/c/9f92e93e257b33e73622640a9...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2025-38531 : Linux Kernel Vulnerability in ST Sensors: Use of Uninitialized Device Structures