-

CVE-2025-38706

EPSS 0.04%
Veröffentlicht 04.09.2025 15:32:57
Zuletzt bearbeitet 05.09.2025 17:47:24
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
Teams Watchlist Login
Unerledigt Login

In the Linux kernel, the following vulnerability has been resolved:

ASoC: core: Check for rtd == NULL in snd_soc_remove_pcm_runtime()

snd_soc_remove_pcm_runtime() might be called with rtd == NULL which will
leads to null pointer dereference.
This was reproduced with topology loading and marking a link as ignore
due to missing hardware component on the system.
On module removal the soc_tplg_remove_link() would call
snd_soc_remove_pcm_runtime() with rtd == NULL since the link was ignored,
no runtime was created.

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 11

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version < 8b465bedc2b417fd27c1d1ab7122882b4b60b1a0

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

Version < 82ba7b8cf9f6e3bf392a9f08ba3d1c0b200ccb94

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

Version < 7f8fc03712194fd4e2df28af7f7f7a38205934ef

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

Version < 41f53afe53a57a7c50323f99424b598190acf192

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

Version < 2fce20decc6a83f16dd73744150c4e7ea6c97c21

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

Version < cecc65827ef3df9754e097582d89569139e6cd1e

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

Version < 7ce0a7255ce97ed7c54afae83fdbce712a1f0c9e

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

Version < 2d91cb261cac6d885954b8f5da28b5c176c18131

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version <= 5.10.*

Version 5.10.241

Status unaffected

Version <= 5.15.*

Version 5.15.190

Status unaffected

Version <= 6.1.*

Version 6.1.149

Status unaffected

Version <= 6.6.*

Version 6.6.103

Status unaffected

Version <= 6.12.*

Version 6.12.43

Status unaffected

Version <= 6.15.*

Version 6.15.11

Status unaffected

Version <= 6.16.*

Version 6.16.2

Status unaffected

Version <= *

Version 6.17-rc1

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.04%	0.092

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

https://git.kernel.org/stable/c/8b465bedc2b417fd27c1d1ab7122882b4b60b1a0

https://git.kernel.org/stable/c/82ba7b8cf9f6e3bf392a9f08ba3d1c0b200ccb94

https://git.kernel.org/stable/c/7f8fc03712194fd4e2df28af7f7f7a38205934ef

https://git.kernel.org/stable/c/41f53afe53a57a7c50323f99424b598190acf192

https://git.kernel.org/stable/c/2fce20decc6a83f16dd73744150c4e7ea6c97c21

https://git.kernel.org/stable/c/cecc65827ef3df9754e097582d89569139e6cd1e

https://git.kernel.org/stable/c/7ce0a7255ce97ed7c54afae83fdbce712a1f0c9e

https://git.kernel.org/stable/c/2d91cb261cac6d885954b8f5da28b5c176c18131

https://nvd.nist.gov/vuln/detail/CVE-2025-38706

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-38706

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-38706

EUVD