CVE-2025-38559
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2025-38559
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-38559.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2025-38559
- Downstream
- Published
- 2025-08-19T17:02:37.020Z
- Modified
- 2025-11-27T02:33:34.627458Z
- Summary
- platform/x86/intel/pmt: fix a crashlog NULL pointer access
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
platform/x86/intel/pmt: fix a crashlog NULL pointer access
Usage of the intelpmtread() for binary sysfs, requires a pcidev. The current use of the endpoint value is only valid for telemetry endpoint usage.
Without the ep, the crashlog usage causes the following NULL pointer exception:
BUG: kernel NULL pointer dereference, address: 0000000000000000 Oops: Oops: 0000 [#1] SMP NOPTI RIP: 0010:intelpmtread+0x3b/0x70 [pmtclass] Code: Call Trace: <TASK> ? sysfskfbinread+0xc0/0xe0 kernfsfopreaditer+0xac/0x1a0 vfsread+0x26d/0x350 ksysread+0x6b/0xe0 _x64sysread+0x1d/0x30 x64syscall+0x1bc8/0x1d70 dosyscall64+0x6d/0x110
Augment struct intelpmtentry with a pointer to the pcidev to avoid the NULL pointer exception.
- Database specific
{ "cna_assigner": "Linux", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/blob/cc431b3424123d84bcd7afd4de150b33f117a8ef/cves/2025/38xxx/CVE-2025-38559.json" }- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/089d05266b2caf020ac2ae2cd2be78f580268f5d
- https://git.kernel.org/stable/c/18d53b543b5447478e259c96ca4688393f327c98
- https://git.kernel.org/stable/c/54d5cd4719c5e87f33d271c9ac2e393147d934f8
- https://git.kernel.org/stable/c/860d93bd6a21f08883711196344c353bc3936a2b
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced045a513040cc0242d364c05c3791594e2294f32dFixed860d93bd6a21f08883711196344c353bc3936a2b
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced045a513040cc0242d364c05c3791594e2294f32dFixed18d53b543b5447478e259c96ca4688393f327c98
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced045a513040cc0242d364c05c3791594e2294f32dFixed089d05266b2caf020ac2ae2cd2be78f580268f5d
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced045a513040cc0242d364c05c3791594e2294f32dFixed54d5cd4719c5e87f33d271c9ac2e393147d934f8