Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-38307

In the Linux kernel, the following vulnerability has been resolved: ASoC: Intel: avs: Verify content returned by parse_int_array() The first element of the returned array stores its length. If it is 0, any manipulation beyond the element at index 0 ends with null-ptr-deref.

Published

2025-07-10T08:15:29.550

Last Modified

2025-07-10T13:17:30.017

Status

Awaiting Analysis

Source

416baaa9-dc9f-4396-8d5f-8c081fb06d67

Severity

Weaknesses

Affected Vendors & Products

References

https://git.kernel.org/stable/c/18ff538aac63de1866e5a49d57e22788b5c21d12 (416baaa9-dc9f-4396-8d5f-8c081fb06d67)
https://git.kernel.org/stable/c/2916794ffbce604cc2cda105f6b8a4a7c748dd7f (416baaa9-dc9f-4396-8d5f-8c081fb06d67)
https://git.kernel.org/stable/c/93e246b6769bdacb09cfff4ea0f00fe5ab4f0d7a (416baaa9-dc9f-4396-8d5f-8c081fb06d67)
https://git.kernel.org/stable/c/cc03c899e6d9812b25c3754c9a95c3830c4aec26 (416baaa9-dc9f-4396-8d5f-8c081fb06d67)