Main Vulnerability Database SB2025072747

SB2025072747 - NULL pointer dereference in Linux kernel misc driver

Published: July 27, 2025

Security Bulletin ID SB2025072747

Severity

Low

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Local access

Highest impact Denial of service

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) NULL pointer dereference (CVE-ID: CVE-2025-38368)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the tps6594_pfsm_probe() function in drivers/misc/tps6594-pfsm.c. A local user can perform a denial of service (DoS) attack.

Remediation

Install update from vendor's website.

References

https://git.kernel.org/stable/c/a10c8bff454b11ef553d9df19ee722d2df34cd0e
https://git.kernel.org/stable/c/a8d1b4f219e8833130927f19d1c8bfbf49215ce4
https://git.kernel.org/stable/c/a99b598d836c9c6411110c70a2da134c78d96e67
https://git.kernel.org/stable/c/d27ee5c59881a64ea92e363502742cb4f38b7460