Linux Kernel Vulnerability in ASoC AMD ACP I2S Driver
CVE-2025-39959

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 9 October 2025

What is CVE-2025-39959?

A vulnerability in the ASoC AMD ACP I2S driver of the Linux kernel can result from incorrect data retrieval processes, specifically when accessing acp_chip_info. This flaw may lead to null pointer dereference scenarios due to some members not being properly updated, which are caused by utilizing the incorrect function for data access. The issue has been addressed by ensuring that the correct function is used to retrieve all relevant acp_chip_info members, thus preventing potential null pointer dereferences and ensuring the stability and performance of the driver's functionality.

Affected Version(s)

Linux e3933683b25e2cc94485da4909e3338e1a177b39 < 65c5cfbd6d938f77a0df3c34855a4f7d8a61fd10

Linux e3933683b25e2cc94485da4909e3338e1a177b39

Linux 6.15

References

https://git.kernel.org/stable/c/65c5cfbd6d938f77a0df3c348...

https://git.kernel.org/stable/c/d7871f400cad1da376f1d7724...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 9, 2025
Vulnerability Reserved
Apr 16, 2025

JSON