CVE-2025-38275
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2025-38275
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-38275.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2025-38275
- Downstream
- Related
- Published
- 2025-07-10T08:15:25Z
- Modified
- 2025-08-12T21:01:38Z
- Summary
- [none]
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
phy: qcom-qmp-usb: Fix an NULL vs IS_ERR() bug
The qmpusbiomap() helper function currently returns the raw result of devmioremap() for non-exclusive mappings. Since devmioremap() may return a NULL pointer and the caller only checks error pointers with IS_ERR(), NULL could bypass the check and lead to an invalid dereference.
Fix the issue by checking if devmioremap() returns NULL. When it does, qmpusbiomap() now returns an error pointer via IOMEMERR_PTR(-ENOMEM), ensuring safe and consistent error handling.
- References
-
- https://git.kernel.org/stable/c/0b979a409e40457ca1b5cb48755d1f34eee58805
- https://git.kernel.org/stable/c/0c33117f00c8c5363c22676931b22ae5041f7603
- https://git.kernel.org/stable/c/127dfb4f1c5a2b622039c5d203f321380ea36665
- https://git.kernel.org/stable/c/5072c1749197fc28b27d7efc0d80320d7cac9572
- https://git.kernel.org/stable/c/d14402a38c2d868cacb1facaf9be908ca6558e59