Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
CVE Vulnerability Details :
CVE-2025-38145
PUBLISHED
More InfoOfficial Page
Assigner-Linux
Assigner Org ID-416baaa9-dc9f-4396-8d5f-8c081fb06d67
View Known Exploited Vulnerability (KEV) details
Published At-03 Jul, 2025 | 08:35
Updated At-03 Nov, 2025 | 17:34
Rejected At-
▼CVE Numbering Authority (CNA)
soc: aspeed: Add NULL check in aspeed_lpc_enable_snoop()

In the Linux kernel, the following vulnerability has been resolved: soc: aspeed: Add NULL check in aspeed_lpc_enable_snoop() devm_kasprintf() returns NULL when memory allocation fails. Currently, aspeed_lpc_enable_snoop() does not check for this case, which results in a NULL pointer dereference. Add NULL check after devm_kasprintf() to prevent this issue. [arj: Fix Fixes: tag to use subject from 3772e5da4454]

Affected Products
Vendor
Linux Kernel Organization, IncLinux
Product
Linux
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Program Files
  • drivers/soc/aspeed/aspeed-lpc-snoop.c
Default Status
unaffected
Versions
Affected
  • From 3772e5da445420543b25825ac2b5971f3743f6e8 before 2beee9cf833374550e673d428ad8b6ab37c175b3 (git)
  • From 3772e5da445420543b25825ac2b5971f3743f6e8 before c550999f939b529d28a914d5034cc4290066aea6 (git)
  • From 3772e5da445420543b25825ac2b5971f3743f6e8 before 1fd889c145722579aa038c31cbc07cfdd4d75166 (git)
  • From 3772e5da445420543b25825ac2b5971f3743f6e8 before d62a589eaaec6385e3e2b25cf5a28b4560ace93f (git)
  • From 3772e5da445420543b25825ac2b5971f3743f6e8 before 8312b1f776f71979bf33bda7acc05b348e8792c7 (git)
  • From 3772e5da445420543b25825ac2b5971f3743f6e8 before f697ef117ecbf3a367dfc559a6a3589905956530 (git)
  • From 3772e5da445420543b25825ac2b5971f3743f6e8 before 45b2e8b0fdd280aba04c3cc869e9ae500c44e4b7 (git)
  • From 3772e5da445420543b25825ac2b5971f3743f6e8 before f1706e0e1a74b095cbc60375b9b1e6205f5f4c98 (git)
Vendor
Linux Kernel Organization, IncLinux
Product
Linux
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Program Files
  • drivers/soc/aspeed/aspeed-lpc-snoop.c
Default Status
affected
Versions
Affected
  • 4.19
Unaffected
  • From 0 before 4.19 (semver)
  • From 5.4.295 through 5.4.* (semver)
  • From 5.10.239 through 5.10.* (semver)
  • From 5.15.186 through 5.15.* (semver)
  • From 6.1.142 through 6.1.* (semver)
  • From 6.6.94 through 6.6.* (semver)
  • From 6.12.34 through 6.12.* (semver)
  • From 6.15.3 through 6.15.* (semver)
  • From 6.16 through * (original_commit_for_fix)
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://git.kernel.org/stable/c/2beee9cf833374550e673d428ad8b6ab37c175b3
N/A
https://git.kernel.org/stable/c/c550999f939b529d28a914d5034cc4290066aea6
N/A
https://git.kernel.org/stable/c/1fd889c145722579aa038c31cbc07cfdd4d75166
N/A
https://git.kernel.org/stable/c/d62a589eaaec6385e3e2b25cf5a28b4560ace93f
N/A
https://git.kernel.org/stable/c/8312b1f776f71979bf33bda7acc05b348e8792c7
N/A
https://git.kernel.org/stable/c/f697ef117ecbf3a367dfc559a6a3589905956530
N/A
https://git.kernel.org/stable/c/45b2e8b0fdd280aba04c3cc869e9ae500c44e4b7
N/A
https://git.kernel.org/stable/c/f1706e0e1a74b095cbc60375b9b1e6205f5f4c98
N/A
Hyperlink: https://git.kernel.org/stable/c/2beee9cf833374550e673d428ad8b6ab37c175b3
Resource: N/A
Hyperlink: https://git.kernel.org/stable/c/c550999f939b529d28a914d5034cc4290066aea6
Resource: N/A
Hyperlink: https://git.kernel.org/stable/c/1fd889c145722579aa038c31cbc07cfdd4d75166
Resource: N/A
Hyperlink: https://git.kernel.org/stable/c/d62a589eaaec6385e3e2b25cf5a28b4560ace93f
Resource: N/A
Hyperlink: https://git.kernel.org/stable/c/8312b1f776f71979bf33bda7acc05b348e8792c7
Resource: N/A
Hyperlink: https://git.kernel.org/stable/c/f697ef117ecbf3a367dfc559a6a3589905956530
Resource: N/A
Hyperlink: https://git.kernel.org/stable/c/45b2e8b0fdd280aba04c3cc869e9ae500c44e4b7
Resource: N/A
Hyperlink: https://git.kernel.org/stable/c/f1706e0e1a74b095cbc60375b9b1e6205f5f4c98
Resource: N/A
▼Authorized Data Publishers (ADP)
CVE Program Container
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html
N/A
https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html
N/A
Hyperlink: https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html
Resource: N/A
Hyperlink: https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html
Resource: N/A
Details not found