CVE-2025-39708

medium

Description

In the Linux kernel, the following vulnerability has been resolved: media: iris: Fix NULL pointer dereference A warning reported by smatch indicated a possible null pointer dereference where one of the arguments to API "iris_hfi_gen2_handle_system_error" could sometimes be null. To fix this, add a check to validate that the argument passed is not null before accessing its members.

References

https://git.kernel.org/stable/c/992ddee3c0da5f113ba86892ace467c1ac645538

https://git.kernel.org/stable/c/0f837559ccdd275c5a059e6ac4d5034b03409f1d

Details

Source: Mitre, NVD

Published: 2025-09-05

Updated: 2025-09-05

Risk Information

CVSS v2

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

Severity: Medium

CVSS v3

Base Score: 5.5

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Severity: Medium

EPSS

EPSS: 0.00018