CVE-2025-39938

In the Linux kernel, the following vulnerability has been resolved:<br /> <br /> ASoC: qcom: q6apm-lpass-dais: Fix NULL pointer dereference if source graph failed<br /> <br /> If earlier opening of source graph fails (e.g. ADSP rejects due to<br /> incorrect audioreach topology), the graph is closed and<br /> "dai_data-&gt;graph[dai-&gt;id]" is assigned NULL. Preparing the DAI for sink<br /> graph continues though and next call to q6apm_lpass_dai_prepare()<br /> receives dai_data-&gt;graph[dai-&gt;id]=NULL leading to NULL pointer<br /> exception:<br /> <br /> qcom-apm gprsvc:service:2:1: Error (1) Processing 0x01001002 cmd<br /> qcom-apm gprsvc:service:2:1: DSP returned error[1001002] 1<br /> q6apm-lpass-dais 30000000.remoteproc:glink-edge:gpr:service@1:bedais: fail to start APM port 78<br /> q6apm-lpass-dais 30000000.remoteproc:glink-edge:gpr:service@1:bedais: ASoC: error at snd_soc_pcm_dai_prepare on TX_CODEC_DMA_TX_3: -22<br /> Unable to handle kernel NULL pointer dereference at virtual address 00000000000000a8<br /> ...<br /> Call trace:<br /> q6apm_graph_media_format_pcm+0x48/0x120 (P)<br /> q6apm_lpass_dai_prepare+0x110/0x1b4<br /> snd_soc_pcm_dai_prepare+0x74/0x108<br /> __soc_pcm_prepare+0x44/0x160<br /> dpcm_be_dai_prepare+0x124/0x1c0