CVE-2025-23148

MEDIUM EPSS 6.6%
Published May 1, 20251y ago · Modified Jun 17, 20261w ago
5.5 CVSS 3.1
Medium
Find Similar
Published May 1, 2025 1y ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: soc: samsung: exynos-chipid: Add NULL pointer check in exynos_chipid_probe() soc_dev_attr->revision could be NULL, thus, a pointer check is added to prevent potential NULL pointer dereference. This is similar to the fix in commit 3027e7b15b02 ("ice: Fix some null pointer dereference issues in ice_ptp.c"). This issue is found by our static analysis tool.

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
6.6% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-476 NULL Pointer Dereference Memory Safety

Affected Products 8

VendorProductVersionRange
linuxlinux_kernel*≥5.4  –  <5.10.237
linuxlinux_kernel*≥5.11  –  <5.15.181
linuxlinux_kernel*≥5.16  –  <6.1.135
linuxlinux_kernel*≥6.2  –  <6.6.88
linuxlinux_kernel*≥6.7  –  <6.12.24
linuxlinux_kernel*≥6.13  –  <6.13.12
linuxlinux_kernel*≥6.14  –  <6.14.3
debiandebian_linux11.0any

References 10

  • git.kernel.org https://git.kernel.org/stable/c/4129760e462f45f14e61b10408ace61aa7c2ed30
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/44a2572a0fdcf3e7565763690d579b998a8f0562
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/475b9b45dc32eba58ab794b5d47ac689fc018398
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/4f51d169fd0d4821bce775618db024062b09a3f7
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/5f80fd2ff8bfd13e41554741740e0ca8e6445ded
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/8ce469d23205249bb17c1135ccadea879576adfc
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/8ee067cf0cf82429e9b204283c7d0d8d6891d10e
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c8222ef6cf29dd7cad21643228f96535cc02b327
    Patch
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2025/05/msg00030.html
    Mailing List
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2025/05/msg00045.html
    Mailing List

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/4129760e462f45f14e61b10408ace61aa7c2ed30
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/44a2572a0fdcf3e7565763690d579b998a8f0562
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/475b9b45dc32eba58ab794b5d47ac689fc018398
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/4f51d169fd0d4821bce775618db024062b09a3f7
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/5f80fd2ff8bfd13e41554741740e0ca8e6445ded
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/8ce469d23205249bb17c1135ccadea879576adfc
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/8ee067cf0cf82429e9b204283c7d0d8d6891d10e
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c8222ef6cf29dd7cad21643228f96535cc02b327
    Patch