CVE-2025-38635

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2025-38635
In the Linux kernel, the following vulnerability has been resolved: clk: davinci: Add NULL check in davinci_lpsc_clk_register() devm_kasprintf() returns NULL when memory allocation fails. Currently, davinci_lpsc_clk_register() does not check for this case, which results in a NULL pointer dereference. Add NULL check after devm_kasprintf() to prevent this issue and ensuring no resources are left allocated.
CVSS

No CVSS.

References
Link Resource
https://git.kernel.org/stable/c/105e8115944a9f93e9412abe7bb07ed96725adf9
https://git.kernel.org/stable/c/13de464f445d42738fe18c9a28bab056ba3a290a
https://git.kernel.org/stable/c/1d92608a29251278015f57f3572bc950db7519f0
https://git.kernel.org/stable/c/23f564326deaafacfd7adf6104755b15216d8320
https://git.kernel.org/stable/c/2adc945b70c4d97e9491a6c0c9f3b217a9eecfba
https://git.kernel.org/stable/c/6fb19cdcf040e1dec052a9032acb66cc2ad1d43f
https://git.kernel.org/stable/c/77e9ad7a2d0e2a771c9e0be04b9d1639413b5f13
https://git.kernel.org/stable/c/7843412e5927dafbb844782c56b6380564064109
https://git.kernel.org/stable/c/7943ed1f05f5cb7372dca2aa227f848747a98791
Configurations

No configuration.

History

28 Aug 2025, 15:15

Type Values Removed Values Added
Summary
  • (es) En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: clk: davinci: Añadir comprobación de NULL en davinci_lpsc_clk_register(). Devm_kasprintf() devuelve NULL cuando falla la asignación de memoria. Actualmente, davinci_lpsc_clk_register() no comprueba este caso, lo que resulta en una desreferencia de puntero NULL. Añadir comprobación de NULL después de devm_kasprintf() para evitar este problema y garantizar que no queden recursos asignados.
References
  • () https://git.kernel.org/stable/c/2adc945b70c4d97e9491a6c0c9f3b217a9eecfba -
  • () https://git.kernel.org/stable/c/77e9ad7a2d0e2a771c9e0be04b9d1639413b5f13 -
  • () https://git.kernel.org/stable/c/7843412e5927dafbb844782c56b6380564064109 -

22 Aug 2025, 16:15

Type Values Removed Values Added
New CVE
Information

Published : 2025-08-22 16:15

Updated : 2025-08-28 15:15

NVD link : CVE-2025-38635

Mitre link : CVE-2025-38635

CVE.ORG link : CVE-2025-38635

JSON object : View

Products Affected

No product.

CWE

No CWE.