CVE-2025-38693
BaseFortify
Publication date: 2025-09-04
Last updated on: 2026-05-04
Assigner: kernel.org
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| linux | linux_kernel | 6.1.153-1 |
| linux | linux_kernel | 5.10.244-1 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-UNKNOWN |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a null pointer dereference in the Linux kernel's media dvb-frontends driver for the w7090p tuner. Specifically, in the function w7090p_tuner_write_serpar, a user-controlled message (msg) can cause a null pointer dereference if msg[0].buf is null and msg[0].len is zero. The code previously did not properly check msg[0].len before accessing msg[0].buf[2], which could lead to a crash. The fix adds a check on msg[0].len to prevent this null pointer dereference and subsequent crash.
How can this vulnerability impact me? :
This vulnerability can cause a denial of service by crashing the Linux kernel when the affected function accesses a null pointer. An attacker controlling the input message could exploit this to cause system instability or crashes, potentially disrupting services relying on the media dvb-frontends driver.
What immediate steps should I take to mitigate this vulnerability?
Apply the patch or update to the fixed version of the Linux kernel that includes the fix for the null pointer dereference in the w7090p tuner driver. This prevents the crash by adding proper checks on msg[0].len. Until then, avoid using the affected media dvb-frontends w7090p driver if possible.