Description

In the Linux kernel, the following vulnerability has been resolved: ASoC: simple-card-utils: Fix pointer check in graph_util_parse_link_direction Actually check if the passed pointers are valid, before writing to them. This also fixes a USBAN warning: UBSAN: invalid-load in ../sound/soc/fsl/imx-card.c:687:25 load of value 255 is not a valid value for type '_Bool' This is because playback_only is uninitialized and is not written to, as the playback-only property is absent.

INFO

Published Date :

2025-05-20T15:21:58.770Z

Last Modified :

2025-05-26T05:24:02.785Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2025-37934 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-37934.

URL Resource
https://git.kernel.org/stable/c/3cc393d2232ec770b5f79bf0673d67702a3536c3 cve-icon cve-icon
https://git.kernel.org/stable/c/9b5b3088c4d1752253491705919bd7d067964288 cve-icon cve-icon
https://git.kernel.org/stable/c/b41a49d5435e0f76da320f231b7252800e8f736f cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025052007-CVE-2025-37934-9436@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2025-37934 cve-icon
https://www.cve.org/CVERecord?id=CVE-2025-37934 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact