-

CVE-2025-40275

EPSS 0.03%
Veröffentlicht 06.12.2025 21:50:57
Zuletzt bearbeitet 08.12.2025 18:26:49
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

In the Linux kernel, the following vulnerability has been resolved:

ALSA: usb-audio: Fix NULL pointer dereference in snd_usb_mixer_controls_badd

In snd_usb_create_streams(), for UAC version 3 devices, the Interface
Association Descriptor (IAD) is retrieved via usb_ifnum_to_if(). If this
call fails, a fallback routine attempts to obtain the IAD from the next
interface and sets a BADD profile. However, snd_usb_mixer_controls_badd()
assumes that the IAD retrieved from usb_ifnum_to_if() is always valid,
without performing a NULL check. This can lead to a NULL pointer
dereference when usb_ifnum_to_if() fails to find the interface descriptor.

This patch adds a NULL pointer check after calling usb_ifnum_to_if() in
snd_usb_mixer_controls_badd() to prevent the dereference.

This issue was discovered by syzkaller, which triggered the bug by sending
a crafted USB device descriptor.

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 11

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version < 23aea9c74aeea2625aaf4fbcc6beb9d09e30f9e4

Version 17156f23e93c0f59e06dd2aaffd06221341caaee

Status affected

Version < c5c08965ab96b16361e69a1e2a0e89dbcb99b5a6

Version 17156f23e93c0f59e06dd2aaffd06221341caaee

Status affected

Version < 9f282104627be5fbded3102ff9004f753c55a063

Version 17156f23e93c0f59e06dd2aaffd06221341caaee

Status affected

Version < 2762d3ea9c929ca4094541ca517c317ffa94625b

Version 17156f23e93c0f59e06dd2aaffd06221341caaee

Status affected

Version < 57f607c112966c21240c424b33e2cb71e121dcf0

Version 17156f23e93c0f59e06dd2aaffd06221341caaee

Status affected

Version < cbdbfc756f2990942138ed0138da9303b4dbf9ff

Version 17156f23e93c0f59e06dd2aaffd06221341caaee

Status affected

Version < 85568535893600024d7d8794f4f8b6428b521e0c

Version 17156f23e93c0f59e06dd2aaffd06221341caaee

Status affected

Version < 632108ec072ad64c8c83db6e16a7efee29ebfb74

Version 17156f23e93c0f59e06dd2aaffd06221341caaee

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 4.18

Status affected

Version < 4.18

Version 0

Status unaffected

Version <= 5.4.*

Version 5.4.302

Status unaffected

Version <= 5.10.*

Version 5.10.247

Status unaffected

Version <= 5.15.*

Version 5.15.197

Status unaffected

Version <= 6.1.*

Version 6.1.159

Status unaffected

Version <= 6.6.*

Version 6.6.117

Status unaffected

Version <= 6.12.*

Version 6.12.59

Status unaffected

Version <= 6.17.*

Version 6.17.9

Status unaffected

Version <= *

Version 6.18

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.03%	0.088

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

https://git.kernel.org/stable/c/23aea9c74aeea2625aaf4fbcc6beb9d09e30f9e4

https://git.kernel.org/stable/c/c5c08965ab96b16361e69a1e2a0e89dbcb99b5a6

https://git.kernel.org/stable/c/9f282104627be5fbded3102ff9004f753c55a063

https://git.kernel.org/stable/c/2762d3ea9c929ca4094541ca517c317ffa94625b

https://git.kernel.org/stable/c/57f607c112966c21240c424b33e2cb71e121dcf0

https://git.kernel.org/stable/c/cbdbfc756f2990942138ed0138da9303b4dbf9ff

https://git.kernel.org/stable/c/85568535893600024d7d8794f4f8b6428b521e0c

https://git.kernel.org/stable/c/632108ec072ad64c8c83db6e16a7efee29ebfb74

https://nvd.nist.gov/vuln/detail/CVE-2025-40275

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-40275

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-40275

EUVD