Description

In the Linux kernel, the following vulnerability has been resolved: ALSA: usb: scarlett2: Fix missing NULL check scarlett2_input_select_ctl_info() sets up the string arrays allocated via kasprintf(), but it misses NULL checks, which may lead to NULL dereference Oops. Let's add the proper NULL check.

INFO

Published Date :

2025-08-22T16:00:37.747Z

Last Modified :

2025-09-29T05:55:07.297Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2025-38629 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-38629.

URL Resource
https://git.kernel.org/stable/c/2c735fcaee81ad8056960659dc9dc460891e76b0 cve-icon cve-icon
https://git.kernel.org/stable/c/d558db85920b124bac36f8a7ddc5de0aa7491bdd cve-icon cve-icon
https://git.kernel.org/stable/c/df485a4b2b3ee5b35c80f990beb554e38a8a5fb1 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025082231-CVE-2025-38629-4f55@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2025-38629 cve-icon
https://www.cve.org/CVERecord?id=CVE-2025-38629 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact