CVE-2025-40015 | THREATINT

Description

In the Linux kernel, the following vulnerability has been resolved: media: stm32-csi: Fix dereference before NULL check In 'stm32_csi_start', 'csidev->s_subdev' is dereferenced directly while assigning a value to the 'src_pad'. However the same value is being checked against NULL at a later point of time indicating that there are chances that the value can be NULL. Move the dereference after the NULL check.

PUBLISHED Reserved 2025-04-16 | Published 2025-10-20 | Updated 2025-10-20 | Assigner Linux

Product status

Default status

unaffected

e7bad98c205d17c745de9d83ebf73e53cbf99d48 (git) before 1f053d82e59c785b2b939cbed12f13657f84b296

affected

e7bad98c205d17c745de9d83ebf73e53cbf99d48 (git) before 4eeafff163e80d576c5efc1360ae310c0ceedd02

affected

e7bad98c205d17c745de9d83ebf73e53cbf99d48 (git) before 80eaf32672871bd2623ce6ba13ffc1f018756580

affected

Default status

affected

6.15

affected

Any version before 6.15

unaffected

6.16.11 (semver)

unaffected

6.17.1 (semver)

unaffected

6.18-rc1 (original_commit_for_fix)

unaffected

References

git.kernel.org/...c/1f053d82e59c785b2b939cbed12f13657f84b296

git.kernel.org/...c/4eeafff163e80d576c5efc1360ae310c0ceedd02

git.kernel.org/...c/80eaf32672871bd2623ce6ba13ffc1f018756580

cve.org (CVE-2025-40015)

nvd.nist.gov (CVE-2025-40015)

Download JSON

help @ threatint.eu