CVE-2025-40045 | THREATINT

Description

In the Linux kernel, the following vulnerability has been resolved: ASoC: codecs: wcd937x: set the comp soundwire port correctly For some reason we endup with setting soundwire port for HPHL_COMP and HPHR_COMP as zero, this can potentially result in a memory corruption due to accessing and setting -1 th element of port_map array.

PUBLISHED Reserved 2025-04-16 | Published 2025-10-28 | Updated 2025-10-28 | Assigner Linux

Product status

Default status

unaffected

82be8c62a38c6a44e64ecb29d7a9b5cb35c6cad4 (git) before abcd537aae3b84c6d10ad147e99a204bcb56b234

affected

82be8c62a38c6a44e64ecb29d7a9b5cb35c6cad4 (git) before 1a1ca38392e7e896075afc8905ddaea525ed30f7

affected

82be8c62a38c6a44e64ecb29d7a9b5cb35c6cad4 (git) before 66a940b1bf48a7095162688332d725ba160154eb

affected

Default status

affected

6.11

affected

Any version before 6.11

unaffected

6.12.53 (semver)

unaffected

6.17.3 (semver)

unaffected

6.18-rc1 (original_commit_for_fix)

unaffected

References

git.kernel.org/...c/abcd537aae3b84c6d10ad147e99a204bcb56b234

git.kernel.org/...c/1a1ca38392e7e896075afc8905ddaea525ed30f7

git.kernel.org/...c/66a940b1bf48a7095162688332d725ba160154eb

cve.org (CVE-2025-40045)

nvd.nist.gov (CVE-2025-40045)

Download JSON

help @ threatint.eu