NULL Pointer Dereference Vulnerability in Linux Kernel Affects Alienware Devices
CVE-2025-40234

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 4 December 2025

What is CVE-2025-40234?

A NULL pointer dereference vulnerability in the Linux kernel affects devices that lack the Alienware Command Center (AWCC) interface. This issue occurs within sleep handlers, where the code incorrectly dereferences the 'awcc' pointer without verifying its initialization. This oversight could lead to system instability or crashes on affected devices. Proper checks must be implemented to ensure safe execution of the sleep handlers, particularly in devices that do not possess the AWCC interface.

Affected Version(s)

Linux 07ac275981b1f11a58dd7bb7790eed66252b072c < 24c3812c9e817d19e4842d7495561594de1ddcb4

Linux 07ac275981b1f11a58dd7bb7790eed66252b072c

Linux 6.16

References

https://git.kernel.org/stable/c/24c3812c9e817d19e4842d749...

https://git.kernel.org/stable/c/a49c4d48c3b60926e6a8cec21...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 4, 2025
Vulnerability Reserved
Apr 16, 2025

JSON