CVE-2025-38438

In the Linux kernel, the following vulnerability has been resolved:

ASoC: SOF: Intel: hda: Use devm_kstrdup() to avoid memleak.

sofpdata->tplgfilename can have address allocated by kstrdup() and can be overwritten. Memory leak was detected with kmemleak:

unreferenced object 0xffff88812391ff60 (size 16): comm "kworker/4:1", pid 161, jiffies 4294802931 hex dump (first 16 bytes): 73 6f 66 2d 68 64 61 2d 67 65 6e 65 72 69 63 00 sof-hda-generic. backtrace (crc 4bf1675c): _kmallocnodetrackcallernoprof+0x49c/0x6b0 kstrdup+0x46/0xc0 hdamachineselect.cold+0x1de/0x12cf [sndsofintelhdageneric] sofinitenvironment+0x16f/0xb50 [sndsof] sofprobecontinue+0x45/0x7c0 [sndsof] sofprobework+0x1e/0x40 [sndsof] processonework+0x894/0x14b0 workerthread+0x5e5/0xfb0 kthread+0x39d/0x760 retfromfork+0x31/0x70 retfromforkasm+0x1a/0x30