We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2025-38307

ASoC: Intel: avs: Verify content returned by parse_int_array()



Description

In the Linux kernel, the following vulnerability has been resolved: ASoC: Intel: avs: Verify content returned by parse_int_array() The first element of the returned array stores its length. If it is 0, any manipulation beyond the element at index 0 ends with null-ptr-deref.

Reserved 2025-04-16 | Published 2025-07-10 | Updated 2025-07-10 | Assigner Linux

Product status

Default status
unaffected

5a565ba23abe478f3d4c3b0c8798bcb5215b82f5 before cc03c899e6d9812b25c3754c9a95c3830c4aec26
affected

5a565ba23abe478f3d4c3b0c8798bcb5215b82f5 before 18ff538aac63de1866e5a49d57e22788b5c21d12
affected

5a565ba23abe478f3d4c3b0c8798bcb5215b82f5 before 2916794ffbce604cc2cda105f6b8a4a7c748dd7f
affected

5a565ba23abe478f3d4c3b0c8798bcb5215b82f5 before 93e246b6769bdacb09cfff4ea0f00fe5ab4f0d7a
affected

Default status
affected

6.2
affected

Any version before 6.2
unaffected

6.6.94
unaffected

6.12.34
unaffected

6.15.3
unaffected

6.16-rc1
unaffected

References

git.kernel.org/...c/cc03c899e6d9812b25c3754c9a95c3830c4aec26

git.kernel.org/...c/18ff538aac63de1866e5a49d57e22788b5c21d12

git.kernel.org/...c/2916794ffbce604cc2cda105f6b8a4a7c748dd7f

git.kernel.org/...c/93e246b6769bdacb09cfff4ea0f00fe5ab4f0d7a

cve.org (CVE-2025-38307)

nvd.nist.gov (CVE-2025-38307)

Download JSON

Share this page
https://cve.threatint.eu/CVE/CVE-2025-38307

Support options

Helpdesk Chat, Email, Knowledgebase
© Copyright 2025 THREATINT
Made in Cyprus with +
 System status
Find us on
Data Privacy
Terms of Use
Logo BSI Allianz für Cyber-Sicherheit
Error loading Crisp.chat. Please check your web content filter and browser plugins.