CVE-2025-38416
BaseFortify
Publication date: 2025-07-25
Last updated on: 2025-12-23
Assigner: kernel.org
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| linux | linux_kernel | From 4.2 (inc) to 5.4.295 (exc) |
| linux | linux_kernel | From 5.5 (inc) to 5.10.239 (exc) |
| linux | linux_kernel | From 5.11 (inc) to 5.15.186 (exc) |
| linux | linux_kernel | From 5.16 (inc) to 6.1.142 (exc) |
| linux | linux_kernel | From 6.2 (inc) to 6.6.95 (exc) |
| linux | linux_kernel | From 6.7 (inc) to 6.12.35 (exc) |
| linux | linux_kernel | From 6.13 (inc) to 6.15.4 (exc) |
| linux | linux_kernel | 6.16 |
| linux | linux_kernel | 6.16 |
| debian | debian_linux | 11.0 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-NVD-CWE-noinfo |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability in the Linux kernel's NFC nci uart driver involves setting the tty->disc_data pointer before the NCI device is fully opened. This premature assignment requires cleanup on error paths and creates a short window where the device might send data before the NCIUARTSETDRIVER IOCTL call succeeds, potentially due to broken hardware. The fix ensures tty->disc_data is only set on the success path, after the device is properly opened and try_module_get() succeeds, closing this window.
How can this vulnerability impact me? :
The vulnerability could allow a short window where the device sends data before the driver is fully ready, which might lead to unexpected behavior or data handling issues in the NFC subsystem of the Linux kernel. This could potentially cause instability or security concerns related to premature data processing.