CVE-2025-40154
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
12/11/2025
Last modified:
12/11/2025
Description
In the Linux kernel, the following vulnerability has been resolved:<br />
<br />
ASoC: Intel: bytcr_rt5640: Fix invalid quirk input mapping<br />
<br />
When an invalid value is passed via quirk option, currently<br />
bytcr_rt5640 driver only shows an error message but leaves as is.<br />
This may lead to unepxected results like OOB access.<br />
<br />
This patch corrects the input mapping to the certain default value if<br />
an invalid value is passed.
Impact
References to Advisories, Solutions, and Tools
- https://git.kernel.org/stable/c/29a41bf6422688f0c5a09b18222e1a64b2629fa4
- https://git.kernel.org/stable/c/2c27e047bdcba457ec953f7e90e4ed6d5f8aeb01
- https://git.kernel.org/stable/c/48880f3cdf2b6d8dcd91219c5b5c8a7526411322
- https://git.kernel.org/stable/c/5c03ea2ef4ebba75c69c90929d8590eb3d3797a9
- https://git.kernel.org/stable/c/a97b4d18ecb012c5624cdf2cab2ce5e1312fdd5d
- https://git.kernel.org/stable/c/dea9c8c9028c9374761224a7f9d824e845a2aa2e
- https://git.kernel.org/stable/c/f58fca15f3bf8b982e799c31e4afa8923788aa40
- https://git.kernel.org/stable/c/fba404e4b4af4f4f747bb0e41e9fff7d03c7bcc0