-

CVE-2025-38706

EPSS 0.04%
Published 04.09.2025 15:32:57
Last modified 05.09.2025 17:47:24
Source 416baaa9-dc9f-4396-8d5f-8c081f
Teams watchlist Login
Open Login

In the Linux kernel, the following vulnerability has been resolved:

ASoC: core: Check for rtd == NULL in snd_soc_remove_pcm_runtime()

snd_soc_remove_pcm_runtime() might be called with rtd == NULL which will
leads to null pointer dereference.
This was reproduced with topology loading and marking a link as ignore
due to missing hardware component on the system.
On module removal the soc_tplg_remove_link() would call
snd_soc_remove_pcm_runtime() with rtd == NULL since the link was ignored,
no runtime was created.

Affected products Warnungen 0 Metrics 1 CWE 0 References 11

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

This information is available to logged-in users.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

VendorLinux

≫

Product Linux

Default Statusunaffected

Version < 8b465bedc2b417fd27c1d1ab7122882b4b60b1a0

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

Version < 82ba7b8cf9f6e3bf392a9f08ba3d1c0b200ccb94

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

Version < 7f8fc03712194fd4e2df28af7f7f7a38205934ef

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

Version < 41f53afe53a57a7c50323f99424b598190acf192

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

Version < 2fce20decc6a83f16dd73744150c4e7ea6c97c21

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

Version < cecc65827ef3df9754e097582d89569139e6cd1e

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

Version < 7ce0a7255ce97ed7c54afae83fdbce712a1f0c9e

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

Version < 2d91cb261cac6d885954b8f5da28b5c176c18131

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

VendorLinux

≫

Product Linux

Default Statusaffected

Version <= 5.10.*

Version 5.10.241

Status unaffected

Version <= 5.15.*

Version 5.15.190

Status unaffected

Version <= 6.1.*

Version 6.1.149

Status unaffected

Version <= 6.6.*

Version 6.6.103

Status unaffected

Version <= 6.12.*

Version 6.12.43

Status unaffected

Version <= 6.15.*

Version 6.15.11

Status unaffected

Version <= 6.16.*

Version 6.16.2

Status unaffected

Version <= *

Version 6.17-rc1

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.04%	0.092

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string

https://git.kernel.org/stable/c/8b465bedc2b417fd27c1d1ab7122882b4b60b1a0

https://git.kernel.org/stable/c/82ba7b8cf9f6e3bf392a9f08ba3d1c0b200ccb94

https://git.kernel.org/stable/c/7f8fc03712194fd4e2df28af7f7f7a38205934ef

https://git.kernel.org/stable/c/41f53afe53a57a7c50323f99424b598190acf192

https://git.kernel.org/stable/c/2fce20decc6a83f16dd73744150c4e7ea6c97c21

https://git.kernel.org/stable/c/cecc65827ef3df9754e097582d89569139e6cd1e

https://git.kernel.org/stable/c/7ce0a7255ce97ed7c54afae83fdbce712a1f0c9e

https://git.kernel.org/stable/c/2d91cb261cac6d885954b8f5da28b5c176c18131

https://nvd.nist.gov/vuln/detail/CVE-2025-38706

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-38706

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-38706

EUVD