CVE-2025-38281 - Vulnerability Details - OpenCVE

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7996: Add NULL check in mt7996_thermal_init devm_kasprintf() can return a NULL pointer on failure,but this returned value in mt7996_thermal_init() is not checked. Add NULL check in mt7996_thermal_init(), to handle kernel NULL pointer dereference error.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

No data.

No data.

No data.

References

Link	Providers
https://git.kernel.org/stable/c/8340cb173750c1ea99cd643006b72f8b0e6c21f2
https://git.kernel.org/stable/c/caf4b347c5dc40fdd125793b5e82ba9fc4de5275

History

Thu, 10 Jul 2025 08:00:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7996: Add NULL check in mt7996_thermal_init devm_kasprintf() can return a NULL pointer on failure,but this returned value in mt7996_thermal_init() is not checked. Add NULL check in mt7996_thermal_init(), to handle kernel NULL pointer dereference error.
Title		wifi: mt76: mt7996: Add NULL check in mt7996_thermal_init
References		https://git.kernel.org/stable/c/8340cb173750c1ea99cd643006b72f8b0e6c21f2 https://git.kernel.org/stable/c/caf4b347c5dc40fdd125793b5e82ba9fc4de5275

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2025-07-10T07:41:59.518Z

Updated: 2025-07-10T07:41:59.518Z

Reserved: 2025-04-16T04:51:24.000Z

Link: CVE-2025-38281

Vulnrichment

No data.

NVD

Status : Awaiting Analysis

Published: 2025-07-10T08:15:26.480

Modified: 2025-07-10T13:17:30.017

Link: CVE-2025-38281

Redhat

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2025-38281", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "state": "PUBLISHED", "assignerShortName": "Linux", "dateReserved": "2025-04-16T04:51:24.000Z", "datePublished": "2025-07-10T07:41:59.518Z", "dateUpdated": "2025-07-10T07:41:59.518Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2025-07-10T07:41:59.518Z"}, "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mt76: mt7996: Add NULL check in mt7996_thermal_init\n\ndevm_kasprintf() can return a NULL pointer on failure,but this\nreturned value in mt7996_thermal_init() is not checked.\nAdd NULL check in mt7996_thermal_init(), to handle kernel NULL\npointer dereference error."}], "affected": [{"product": "Linux", "vendor": "Linux", "defaultStatus": "unaffected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/net/wireless/mediatek/mt76/mt7996/init.c"], "versions": [{"version": "69d54ce7491d046eaae05de7fb2493319a481991", "lessThan": "8340cb173750c1ea99cd643006b72f8b0e6c21f2", "status": "affected", "versionType": "git"}, {"version": "69d54ce7491d046eaae05de7fb2493319a481991", "lessThan": "caf4b347c5dc40fdd125793b5e82ba9fc4de5275", "status": "affected", "versionType": "git"}]}, {"product": "Linux", "vendor": "Linux", "defaultStatus": "affected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/net/wireless/mediatek/mt76/mt7996/init.c"], "versions": [{"version": "6.14", "status": "affected"}, {"version": "0", "lessThan": "6.14", "status": "unaffected", "versionType": "semver"}, {"version": "6.15.3", "lessThanOrEqual": "6.15.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.16-rc1", "lessThanOrEqual": "*", "status": "unaffected", "versionType": "original_commit_for_fix"}]}], "cpeApplicability": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.14", "versionEndExcluding": "6.15.3"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.14", "versionEndExcluding": "6.16-rc1"}]}]}], "references": [{"url": "https://git.kernel.org/stable/c/8340cb173750c1ea99cd643006b72f8b0e6c21f2"}, {"url": "https://git.kernel.org/stable/c/caf4b347c5dc40fdd125793b5e82ba9fc4de5275"}], "title": "wifi: mt76: mt7996: Add NULL check in mt7996_thermal_init", "x_generator": {"engine": "bippy-1.2.0"}}}}