CVE-2025-40030

NONE EPSS 10.8%
Published Oct 28, 20258mo ago · Modified Jun 17, 20262w ago
Find Similar
Published Oct 28, 2025 8mo ago
Last Modified Jun 17, 2026 2w ago

Description

In the Linux kernel, the following vulnerability has been resolved: pinctrl: check the return value of pinmux_ops::get_function_name() While the API contract in docs doesn't specify it explicitly, the generic implementation of the get_function_name() callback from struct pinmux_ops - pinmux_generic_get_function_name() - can fail and return NULL. This is already checked in pinmux_check_ops() so add a similar check in pinmux_func_name_to_selector() instead of passing the returned pointer right down to strcmp() where the NULL can get dereferenced. This is normal operation when adding new pinfunctions.

Threat Intelligence

EPSS Exploit Probability
10.8% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

References 8

  • git.kernel.org https://git.kernel.org/stable/c/1a2ea887a5cd7d47bab599f733d89444df018b1a
  • git.kernel.org https://git.kernel.org/stable/c/1a7fc8fed2bb2e113604fde7a45432ace2056b97
  • git.kernel.org https://git.kernel.org/stable/c/4002ee98c022d671ecc1e4a84029e9ae7d8a5603
  • git.kernel.org https://git.kernel.org/stable/c/688c688e0bf55824f4a38f8c2180046f089a3e3b
  • git.kernel.org https://git.kernel.org/stable/c/b7e0535060a60cc99eafc19cc665d979714cd73a
  • git.kernel.org https://git.kernel.org/stable/c/ba7f7c2b2b3261e7def67018c38c69b626e0e66e
  • git.kernel.org https://git.kernel.org/stable/c/d77ef2f621cd1d605372c4c6ce667c496f6990c3
  • git.kernel.org https://git.kernel.org/stable/c/e7265dc4c670b89611bcf5fe33acf99bc0aa294f

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.