CVE-2025-38007
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
18/06/2025
Last modified:
18/06/2025
Description
In the Linux kernel, the following vulnerability has been resolved:<br />
<br />
HID: uclogic: Add NULL check in uclogic_input_configured()<br />
<br />
devm_kasprintf() returns NULL when memory allocation fails. Currently,<br />
uclogic_input_configured() does not check for this case, which results<br />
in a NULL pointer dereference.<br />
<br />
Add NULL check after devm_kasprintf() to prevent this issue.
Impact
References to Advisories, Solutions, and Tools
- https://git.kernel.org/stable/c/01b76cc8ca243fc3376b035aa326bbc4f03d384b
- https://git.kernel.org/stable/c/94e7272b636a0677082e0604609e4c471e0a2caf
- https://git.kernel.org/stable/c/ad6caaf29bc26a48b1241ce82561fcbcf0a75aa9
- https://git.kernel.org/stable/c/b616453d719ee1b8bf2ea6f6cc6c6258a572a590
- https://git.kernel.org/stable/c/bd07f751208ba190f9b0db5e5b7f35d5bb4a8a1e