CVE-2025-38655 | THREATINT

Description

In the Linux kernel, the following vulnerability has been resolved: pinctrl: canaan: k230: add NULL check in DT parse Add a NULL check for the return value of of_get_property() when retrieving the "pinmux" property in the group parser. This avoids a potential NULL pointer dereference if the property is missing from the device tree node. Also fix a typo ("sintenel") in the device ID match table comment, correcting it to "sentinel".

PUBLISHED Reserved 2025-04-16 | Published 2025-08-22 | Updated 2025-09-29 | Assigner Linux

Product status

Default status

unaffected

545887eab6f6776a7477fe7e83860eab57138b03 before b5ae84aeff60b8819e8568ff0c57590caed9e6d3

affected

545887eab6f6776a7477fe7e83860eab57138b03 before 5d324b262c0ff256b8d603596574d66267b6394f

affected

545887eab6f6776a7477fe7e83860eab57138b03 before 65bd0be486390fc12a84eafaad78758c5e5a55e6

affected

Default status

affected

6.13

affected

Any version before 6.13

unaffected

6.15.10

unaffected

6.16.1

unaffected

6.17

unaffected

References

git.kernel.org/...c/b5ae84aeff60b8819e8568ff0c57590caed9e6d3

git.kernel.org/...c/5d324b262c0ff256b8d603596574d66267b6394f

git.kernel.org/...c/65bd0be486390fc12a84eafaad78758c5e5a55e6

cve.org (CVE-2025-38655)

nvd.nist.gov (CVE-2025-38655)

Download JSON

help @ threatint.eu