CVE-2025-38412

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2025-38412
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-38412.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2025-38412
Downstream
Related
Published
2025-07-25T13:20:16.688Z
Modified
2026-05-28T03:53:35.359654479Z
Summary
platform/x86: dell-wmi-sysman: Fix WMI data block retrieval in sysfs callbacks
Details

In the Linux kernel, the following vulnerability has been resolved:

platform/x86: dell-wmi-sysman: Fix WMI data block retrieval in sysfs callbacks

After retrieving WMI data blocks in sysfs callbacks, check for the validity of them before dereferencing their content.

Database specific 
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/38xxx/CVE-2025-38412.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
e8a60aa7404bfef37705da5607c97737073ac38d
Fixed
92c2d914b5337431d885597a79a3a3d9d55e80b7
Fixed
68e9963583d11963ceca5d276e9c44684509f759
Fixed
0deb3eb78ebf225cb41aa9b2b2150f46cbfd359e
Fixed
5df3b870bc389a1767c72448a3ce1c576ef4deab
Fixed
aaf847dcb4114fe8b25d4c1c790bedcb6088cb3d
Fixed
eb617dd25ca176f3fee24f873f0fd60010773d67

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-38412.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
5.11.0
Fixed
5.15.187
Type
ECOSYSTEM
Events
Introduced
5.16.0
Fixed
6.1.144
Type
ECOSYSTEM
Events
Introduced
6.2.0
Fixed
6.6.97
Type
ECOSYSTEM
Events
Introduced
6.7.0
Fixed
6.12.37
Type
ECOSYSTEM
Events
Introduced
6.13.0
Fixed
6.15.6

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-38412.json"