CVE-2025-38368

medium

Description

In the Linux kernel, the following vulnerability has been resolved: misc: tps6594-pfsm: Add NULL pointer check in tps6594_pfsm_probe() The returned value, pfsm->miscdev.name, from devm_kasprintf() could be NULL. A pointer check is added to prevent potential NULL pointer dereference. This is similar to the fix in commit 3027e7b15b02 ("ice: Fix some null pointer dereference issues in ice_ptp.c"). This issue is found by our static analysis tool.

References

https://git.kernel.org/stable/c/d27ee5c59881a64ea92e363502742cb4f38b7460

https://git.kernel.org/stable/c/a99b598d836c9c6411110c70a2da134c78d96e67

https://git.kernel.org/stable/c/a8d1b4f219e8833130927f19d1c8bfbf49215ce4

https://git.kernel.org/stable/c/a10c8bff454b11ef553d9df19ee722d2df34cd0e

Details

Source: Mitre, NVD

Published: 2025-07-25

Updated: 2025-07-25

Risk Information

CVSS v2

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

Severity: Medium

CVSS v3

Base Score: 5.5

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Severity: Medium

EPSS

EPSS: 0.00018