-

CVE-2025-40275

EPSS 0.08%
Veröffentlicht 06.12.2025 21:50:57
Zuletzt bearbeitet 15.04.2026 00:35:42
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

ALSA: usb-audio: Fix NULL pointer dereference in snd_usb_mixer_controls_badd

In the Linux kernel, the following vulnerability has been resolved:

ALSA: usb-audio: Fix NULL pointer dereference in snd_usb_mixer_controls_badd

In snd_usb_create_streams(), for UAC version 3 devices, the Interface
Association Descriptor (IAD) is retrieved via usb_ifnum_to_if(). If this
call fails, a fallback routine attempts to obtain the IAD from the next
interface and sets a BADD profile. However, snd_usb_mixer_controls_badd()
assumes that the IAD retrieved from usb_ifnum_to_if() is always valid,
without performing a NULL check. This can lead to a NULL pointer
dereference when usb_ifnum_to_if() fails to find the interface descriptor.

This patch adds a NULL pointer check after calling usb_ifnum_to_if() in
snd_usb_mixer_controls_badd() to prevent the dereference.

This issue was discovered by syzkaller, which triggered the bug by sending
a crafted USB device descriptor.

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 11

CNA 2 VulnDex Vulnerability Enrichment 10

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version 17156f23e93c0f59e06dd2aaffd06221341caaee

Version < 23aea9c74aeea2625aaf4fbcc6beb9d09e30f9e4

Status affected

Version 17156f23e93c0f59e06dd2aaffd06221341caaee

Version < c5c08965ab96b16361e69a1e2a0e89dbcb99b5a6

Status affected

Version 17156f23e93c0f59e06dd2aaffd06221341caaee

Version < 9f282104627be5fbded3102ff9004f753c55a063

Status affected

Version 17156f23e93c0f59e06dd2aaffd06221341caaee

Version < 2762d3ea9c929ca4094541ca517c317ffa94625b

Status affected

Version 17156f23e93c0f59e06dd2aaffd06221341caaee

Version < 57f607c112966c21240c424b33e2cb71e121dcf0

Status affected

Version 17156f23e93c0f59e06dd2aaffd06221341caaee

Version < cbdbfc756f2990942138ed0138da9303b4dbf9ff

Status affected

Version 17156f23e93c0f59e06dd2aaffd06221341caaee

Version < 85568535893600024d7d8794f4f8b6428b521e0c

Status affected

Version 17156f23e93c0f59e06dd2aaffd06221341caaee

Version < 632108ec072ad64c8c83db6e16a7efee29ebfb74

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 4.18

Status affected

Version 0

Version < 4.18

Status unaffected

Version <= 5.4.*

Version 5.4.302

Status unaffected

Version <= 5.10.*

Version 5.10.247

Status unaffected

Version <= 5.15.*

Version 5.15.197

Status unaffected

Version <= 6.1.*

Version 6.1.159

Status unaffected

Version <= 6.6.*

Version 6.6.117

Status unaffected

Version <= 6.12.*

Version 6.12.59

Status unaffected

Version <= 6.17.*

Version 6.17.9

Status unaffected

Version <= *

Version 6.18

Status unaffected

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.08%	0.227

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

Es wurden noch keine Informationen zu CWE veröffentlicht.

https://git.kernel.org/stable/c/23aea9c74aeea2625aaf4fbcc6beb9d09e30f9e4

https://git.kernel.org/stable/c/c5c08965ab96b16361e69a1e2a0e89dbcb99b5a6

https://git.kernel.org/stable/c/9f282104627be5fbded3102ff9004f753c55a063

https://git.kernel.org/stable/c/2762d3ea9c929ca4094541ca517c317ffa94625b

https://git.kernel.org/stable/c/57f607c112966c21240c424b33e2cb71e121dcf0

https://git.kernel.org/stable/c/cbdbfc756f2990942138ed0138da9303b4dbf9ff

https://git.kernel.org/stable/c/85568535893600024d7d8794f4f8b6428b521e0c

https://git.kernel.org/stable/c/632108ec072ad64c8c83db6e16a7efee29ebfb74

https://nvd.nist.gov/vuln/detail/CVE-2025-40275

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-40275

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-40275

EUVD