CVE-2025-68281 | THREATINT

Description

In the Linux kernel, the following vulnerability has been resolved: ASoC: SDCA: bug fix while parsing mipi-sdca-control-cn-list "struct sdca_control" declares "values" field as integer array. But the memory allocated to it is of char array. This causes crash for sdca_parse_function API. This patch addresses the issue by allocating correct data size.

PUBLISHED Reserved 2025-12-16 | Published 2025-12-16 | Updated 2025-12-16 | Assigner Linux

Product status

Default status

unaffected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 (git) before fcd5786b506c51cbabc2560c68e040d8dba22a0d

affected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 (git) before eb2d6774cc0d9d6ab8f924825695a85c14b2e0c2

affected

Default status

affected

6.17.12 (semver)

unaffected

6.18 (original_commit_for_fix)

unaffected

References

git.kernel.org/...c/fcd5786b506c51cbabc2560c68e040d8dba22a0d

git.kernel.org/...c/eb2d6774cc0d9d6ab8f924825695a85c14b2e0c2

cve.org (CVE-2025-68281)

nvd.nist.gov (CVE-2025-68281)

Download JSON

Data based on CVE®. Copyright © 1999-2025, The MITRE Corporation. All rights reserved.

help @ threatint.eu