CVE-2025-38144

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2025-38144

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-38144.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2025-38144

Downstream

UBUNTU-CVE-2025-38144

Published

2025-07-03T08:35:45.584Z

Modified

2025-12-02T12:39:17.339198Z

Summary

watchdog: lenovo_se30_wdt: Fix possible devm_ioremap() NULL pointer dereference in lenovo_se30_wdt_probe()

Details

In the Linux kernel, the following vulnerability has been resolved:

watchdog: lenovose30wdt: Fix possible devmioremap() NULL pointer dereference in lenovose30wdtprobe()

devmioremap() returns NULL on error. Currently, lenovose30wdtprobe() does not check for this case, which results in a NULL pointer dereference.

Add NULL check after devm_ioremap() to prevent this issue.

Database specific

{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/38xxx/CVE-2025-38144.json",
    "cna_assigner": "Linux"
}

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

c284153a2c5537db4fec51ac850c17d2eb1ffcfe

Fixed

57f7a1da0ec06d8579accaf77762d0128d13e4af

Fixed

a4e2401438a26131ecff9be6a3a1d4cbfea66f9a

Affected versions

v6.*

v6.14

v6.14-rc4

v6.14-rc5

v6.14-rc6

v6.14-rc7

v6.15

v6.15-rc1

v6.15-rc2

v6.15-rc3

v6.15-rc4

v6.15-rc5

v6.15-rc6

v6.15-rc7

v6.15.1

v6.15.2

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-38144.json"

Linux / Kernel

Package

Name: Kernel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

6.15.0

Fixed

6.15.3

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-38144.json"