CVE-2025-38634

MEDIUM EPSS 4.2%
Published Aug 22, 202510mo ago · Modified Jun 17, 20261w ago
5.5 CVSS 3.1
Medium
Find Similar
Published Aug 22, 2025 10mo ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: power: supply: cpcap-charger: Fix null check for power_supply_get_by_name In the cpcap_usb_detect() function, the power_supply_get_by_name() function may return `NULL` instead of an error pointer. To prevent potential null pointer dereferences, Added a null check.

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
4.2% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-476 NULL Pointer Dereference Memory Safety

Affected Products 7

VendorProductVersionRange
linuxlinux_kernel*≥5.14  –  <5.15.190
linuxlinux_kernel*≥5.16  –  <6.1.148
linuxlinux_kernel*≥6.2  –  <6.6.102
linuxlinux_kernel*≥6.7  –  <6.12.42
linuxlinux_kernel*≥6.13  –  <6.15.10
linuxlinux_kernel*≥6.16  –  <6.16.1
debiandebian_linux11.0any

References 8

  • git.kernel.org https://git.kernel.org/stable/c/27001e4f146624c4b3389b029bdc0f8049819560
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/4ebbb9106aaa2fd58e0359bc3a2490953db2ef0c
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/8e9bdb563916287ba1b4258812434e0585ac6d00
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/9784d832d7c103539cd9afb376534eaa35815d3d
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a2436263144980cc99a9860c7b43335847afbe53
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d9fa3aae08f99493e67fb79413c0e95d30fca5e9
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f642500aa7ed93d2606e4f929244cce9c7467b3a
    Patch
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html
    Third Party Advisory

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/27001e4f146624c4b3389b029bdc0f8049819560
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/4ebbb9106aaa2fd58e0359bc3a2490953db2ef0c
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/8e9bdb563916287ba1b4258812434e0585ac6d00
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/9784d832d7c103539cd9afb376534eaa35815d3d
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a2436263144980cc99a9860c7b43335847afbe53
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d9fa3aae08f99493e67fb79413c0e95d30fca5e9
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f642500aa7ed93d2606e4f929244cce9c7467b3a
    Patch