CVE-2025-38664

high

Description

In the Linux kernel, the following vulnerability has been resolved: ice: Fix a null pointer dereference in ice_copy_and_init_pkg() Add check for the return value of devm_kmemdup() to prevent potential null pointer dereference.

References

https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html

https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html

https://git.kernel.org/stable/c/7c5a13c76dd37e9e4f8d48b87376a54f4399ce15

https://git.kernel.org/stable/c/6d640a8ea62435a7f6f89869bee4fa99423d07ca

https://git.kernel.org/stable/c/4ff12d82dac119b4b99b5a78b5af3bf2474c0a36

https://git.kernel.org/stable/c/435462f8ab2b9c5340a5414ce02f70117d0cfede

https://git.kernel.org/stable/c/35370d3b44efe194fd5ad55bac987e629597d782

https://git.kernel.org/stable/c/3028f2a4e746b499043bbb8ab816f975473a0535

https://git.kernel.org/stable/c/1c30093d58cd3d02d8358e2b1f4a06a0aae0bf5b

https://git.kernel.org/stable/c/0fde7dccbf4c8a6d7940ecaf4c3d80a12f405dd7

Details

Source: Mitre, NVD

Published: 2025-08-22

Updated: 2025-11-03

Risk Information

CVSS v2

Base Score: 6

Vector: CVSS2#AV:L/AC:H/Au:S/C:C/I:C/A:C

Severity: Medium

CVSS v3

Base Score: 7

Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Severity: High

EPSS

EPSS: 0.00018

Detections

Analytics