CVE-2025-40015

Severity CVSS v4.0:

Pending analysis

Type:

Unavailable / Other

Publication date:

20/10/2025

Last modified:

21/10/2025

Description

In the Linux kernel, the following vulnerability has been resolved: media: stm32-csi: Fix dereference before NULL check In &#39;stm32_csi_start&#39;, &#39;csidev->s_subdev&#39; is dereferenced directly while assigning a value to the &#39;src_pad&#39;. However the same value is being checked against NULL at a later point of time indicating that there are chances that the value can be NULL. Move the dereference after the NULL check.

Impact

References to Advisories, Solutions, and Tools

https://git.kernel.org/stable/c/1f053d82e59c785b2b939cbed12f13657f84b296
https://git.kernel.org/stable/c/4eeafff163e80d576c5efc1360ae310c0ceedd02
https://git.kernel.org/stable/c/80eaf32672871bd2623ce6ba13ffc1f018756580