5.5

CVE-2025-38634

power: supply: cpcap-charger: Fix null check for power_supply_get_by_name

In the Linux kernel, the following vulnerability has been resolved:

power: supply: cpcap-charger: Fix null check for power_supply_get_by_name

In the cpcap_usb_detect() function, the power_supply_get_by_name()
function may return `NULL` instead of an error pointer.
To prevent potential null pointer dereferences, Added a null check.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 5.14 < 5.15.190
LinuxLinux Kernel Version >= 5.16 < 6.1.148
LinuxLinux Kernel Version >= 6.2 < 6.6.102
LinuxLinux Kernel Version >= 6.7 < 6.12.42
LinuxLinux Kernel Version >= 6.13 < 6.15.10
LinuxLinux Kernel Version >= 6.16 < 6.16.1
DebianDebian Linux Version11.0
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.15% 0.041
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CWE-476 NULL Pointer Dereference

The product dereferences a pointer that it expects to be valid but is NULL.

https://git.kernel.org/stable/c/a2436263144980cc99a9860c7b43335847afbe53
Patch
https://git.kernel.org/stable/c/8e9bdb563916287ba1b4258812434e0585ac6d00
Patch
https://git.kernel.org/stable/c/f642500aa7ed93d2606e4f929244cce9c7467b3a
Patch
https://git.kernel.org/stable/c/9784d832d7c103539cd9afb376534eaa35815d3d
Patch
https://git.kernel.org/stable/c/27001e4f146624c4b3389b029bdc0f8049819560
Patch
https://git.kernel.org/stable/c/d9fa3aae08f99493e67fb79413c0e95d30fca5e9
Patch
https://git.kernel.org/stable/c/4ebbb9106aaa2fd58e0359bc3a2490953db2ef0c
Patch
https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html
Third Party Advisory