CVE-2025-38454

In the Linux kernel, the following vulnerability has been resolved: ALSA: ad1816a: Fix potential NULL pointer deref in snd_card_ad1816a_pnp() Use pr_warn() instead of dev_warn() when 'pdev' is NULL to avoid a potential NULL pointer dereference.

CVSS v3 5.5 MEDIUM

5.5^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 3.6

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://git.kernel.org/stable/c/043faef334a1f3d96ae88e1b7618bfa2b4946388	Patch
https://git.kernel.org/stable/c/e14bffc90866596ba19ffe549f199d7870da4241	Patch
https://git.kernel.org/stable/c/ef84c94d11ff972ecc3507f1ed092046bf6204b2	Patch

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel:6.16:rc1::::::
	cpe:2.3:o:linux:linux_kernel:6.16:rc2::::::
	cpe:2.3:o:linux:linux_kernel:6.16:rc3::::::
	cpe:2.3:o:linux:linux_kernel:6.16:rc4::::::
	cpe:2.3:o:linux:linux_kernel:6.16:rc5::::::

History

19 Nov 2025, 17:57

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 5.5
CWE		CWE-476
References	~~() https://git.kernel.org/stable/c/043faef334a1f3d96ae88e1b7618bfa2b4946388 -~~	() https://git.kernel.org/stable/c/043faef334a1f3d96ae88e1b7618bfa2b4946388 - Patch
References	~~() https://git.kernel.org/stable/c/e14bffc90866596ba19ffe549f199d7870da4241 -~~	() https://git.kernel.org/stable/c/e14bffc90866596ba19ffe549f199d7870da4241 - Patch
References	~~() https://git.kernel.org/stable/c/ef84c94d11ff972ecc3507f1ed092046bf6204b2 -~~	() https://git.kernel.org/stable/c/ef84c94d11ff972ecc3507f1ed092046bf6204b2 - Patch
First Time		Linux Linux linux Kernel
CPE		cpe:2.3:o:linux:linux_kernel:6.16:rc2:::::: cpe:2.3:o:linux:linux_kernel:6.16:rc1:::::: cpe:2.3:o:linux:linux_kernel:6.16:rc3:::::: cpe:2.3:o:linux:linux_kernel:::::::: cpe:2.3:o:linux:linux_kernel:6.16:rc5:::::: cpe:2.3:o:linux:linux_kernel:6.16:rc4::::::

29 Jul 2025, 14:14

Type	Values Removed	Values Added
Summary		(es) En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: ALSA: ad1816a: Se corrige la posible desreferencia de puntero NULL en snd_card_ad1816a_pnp(). Utilice pr_warn() en lugar de dev_warn() cuando 'pdev' sea NULL para evitar una posible desreferencia de puntero NULL.

25 Jul 2025, 16:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-07-25 16:15

Updated : 2025-11-19 17:57

NVD link : CVE-2025-38454

Mitre link : CVE-2025-38454

CVE.ORG link : CVE-2025-38454

JSON object : View

Products Affected

linux

linux_kernel

CWE

CWE-476

NULL Pointer Dereference

5.5 /10