CVE-2025-38531

In the Linux kernel, the following vulnerability has been resolved:<br /> <br /> iio: common: st_sensors: Fix use of uninitialize device structs<br /> <br /> Throughout the various probe functions &amp;indio_dev-&gt;dev is used before it<br /> is initialized. This caused a kernel panic in st_sensors_power_enable()<br /> when the call to devm_regulator_bulk_get_enable() fails and then calls<br /> dev_err_probe() with the uninitialized device.<br /> <br /> This seems to only cause a panic with dev_err_probe(), dev_err(),<br /> dev_warn() and dev_info() don&amp;#39;t seem to cause a panic, but are fixed<br /> as well.<br /> <br /> The issue is reported and traced here: [1]