CVE-2025-38275

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2025-38275
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-38275.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2025-38275
Downstream
Related
Published
2025-07-10T07:41:55.658Z
Modified
2026-03-20T12:42:46.418841Z
Summary
phy: qcom-qmp-usb: Fix an NULL vs IS_ERR() bug
Details

In the Linux kernel, the following vulnerability has been resolved:

phy: qcom-qmp-usb: Fix an NULL vs IS_ERR() bug

The qmpusbiomap() helper function currently returns the raw result of devmioremap() for non-exclusive mappings. Since devmioremap() may return a NULL pointer and the caller only checks error pointers with IS_ERR(), NULL could bypass the check and lead to an invalid dereference.

Fix the issue by checking if devmioremap() returns NULL. When it does, qmpusbiomap() now returns an error pointer via IOMEMERR_PTR(-ENOMEM), ensuring safe and consistent error handling.

Database specific 
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/38xxx/CVE-2025-38275.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
a5d6b1ac56cbd6b5850a3a54e35f1cb71e8e8cdd
Fixed
0b979a409e40457ca1b5cb48755d1f34eee58805
Fixed
127dfb4f1c5a2b622039c5d203f321380ea36665
Fixed
5072c1749197fc28b27d7efc0d80320d7cac9572
Fixed
0c33117f00c8c5363c22676931b22ae5041f7603
Fixed
d14402a38c2d868cacb1facaf9be908ca6558e59
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
368ea32e0ad0335bdf3180067875a928e35387c6

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-38275.json"