CVE-2025-38645

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2025-38645
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-38645.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2025-38645
Downstream
Related
Published
2025-08-22T16:00:50.665Z
Modified
2026-05-07T04:18:36.005836Z
Summary
net/mlx5: Check device memory pointer before usage
Details

In the Linux kernel, the following vulnerability has been resolved:

net/mlx5: Check device memory pointer before usage

Add a NULL check before accessing device memory to prevent a crash if dev->dm allocation in mlx5initonce() fails.

Database specific 
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/38xxx/CVE-2025-38645.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
c9b9dcb430b3cd0ad2b04c360c4e528d73430481
Fixed
9053a69abfb5680c2a95292b96df5d204bc0776f
Fixed
eebb225fe6c9103293807b8edabcbad59f9589bc
Fixed
62d7cf455c887941ed6f105cd430ba04ee0b6c9f
Fixed
4249f1307932f1b6bbb8b7eba60d82f0b7e44430
Fixed
3046b011d368162b1b9ca9453eee0fea930e0a93
Fixed
da899a1fd7c40e2e4302af1db7d0b8540fb22283
Fixed
70f238c902b8c0461ae6fbb8d1a0bbddc4350eea

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-38645.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
5.4.0
Fixed
5.15.190
Type
ECOSYSTEM
Events
Introduced
5.16.0
Fixed
6.1.148
Type
ECOSYSTEM
Events
Introduced
6.2.0
Fixed
6.6.102
Type
ECOSYSTEM
Events
Introduced
6.7.0
Fixed
6.12.42
Type
ECOSYSTEM
Events
Introduced
6.13.0
Fixed
6.15.10
Type
ECOSYSTEM
Events
Introduced
6.16.0
Fixed
6.16.1

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-38645.json"