Detections
Analytics

CVE-2025-38664

medium

Description

In the Linux kernel, the following vulnerability has been resolved: ice: Fix a null pointer dereference in ice_copy_and_init_pkg() Add check for the return value of devm_kmemdup() to prevent potential null pointer dereference.

References

https://git.kernel.org/stable/c/7c5a13c76dd37e9e4f8d48b87376a54f4399ce15

https://git.kernel.org/stable/c/6d640a8ea62435a7f6f89869bee4fa99423d07ca

https://git.kernel.org/stable/c/4ff12d82dac119b4b99b5a78b5af3bf2474c0a36

https://git.kernel.org/stable/c/435462f8ab2b9c5340a5414ce02f70117d0cfede

https://git.kernel.org/stable/c/35370d3b44efe194fd5ad55bac987e629597d782

https://git.kernel.org/stable/c/3028f2a4e746b499043bbb8ab816f975473a0535

https://git.kernel.org/stable/c/1c30093d58cd3d02d8358e2b1f4a06a0aae0bf5b

https://git.kernel.org/stable/c/0fde7dccbf4c8a6d7940ecaf4c3d80a12f405dd7

Details

Source: Mitre, NVD

Published: 2025-08-22

Updated: 2025-08-28

Risk Information

CVSS v2

Base Score: 4.9

Vector: CVSS2#AV:L/AC:L/Au:N/C:N/I:N/A:C

Severity: Medium

CVSS v3

Base Score: 5.5

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Severity: Medium

EPSS

EPSS: 0.00018