CVE-2025-38541

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2025-38541

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-38541.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2025-38541

Downstream

BELL-CVE-2025-38541

DEBIAN-CVE-2025-38541

MINI-gj9q-mmq5-mrh5

ROOT-OS-DEBIAN-13-CVE-2025-38541

SUSE-SU-2025:03272-1

SUSE-SU-2025:03290-1

SUSE-SU-2025:03301-1

SUSE-SU-2025:03382-1

SUSE-SU-2025:03602-1

SUSE-SU-2025:03633-1

SUSE-SU-2025:03634-1

SUSE-SU-2025:20653-1

SUSE-SU-2025:20669-1

SUSE-SU-2025:20739-1

SUSE-SU-2025:20756-1

SUSE-SU-2026:20555-1

SUSE-SU-2026:20599-1

SUSE-SU-2026:20615-1

UBUNTU-CVE-2025-38541

USN-7833-1

USN-7833-2

USN-7833-3

USN-7833-4

USN-7834-1

USN-7856-1

openSUSE-SU-2026:20287-1

Related

Published

2025-08-16T11:22:15.776Z

Modified

2026-03-12T02:16:01.935225Z

Summary

wifi: mt76: mt7925: Fix null-ptr-deref in mt7925_thermal_init()

Details

In the Linux kernel, the following vulnerability has been resolved:

wifi: mt76: mt7925: Fix null-ptr-deref in mt7925thermalinit()

devmkasprintf() returns NULL on error. Currently, mt7925thermal_init() does not check for this case, which results in a NULL pointer dereference.

Add NULL check after devm_kasprintf() to prevent this issue.

Database specific

{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/38xxx/CVE-2025-38541.json"
}

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

396e41a74a88654f23e36c46d2995752c91654a5

Fixed

1bbdf4213711bb6dc365e7628430a63dd3280794

Fixed

2e99e9b34ece0b6d3e82cb757e9f60fa414da999

Fixed

03ee8f73801a8f46d83dfc2bf73fb9ffa5a21602

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-38541.json"