CVE-2025-38634

Sažetak

In the Linux kernel, the following vulnerability has been resolved: power: supply: cpcap-charger: Fix null check for power_supply_get_by_name In the cpcap_usb_detect() function, the power_supply_get_by_name() function may return `NULL` instead of an error pointer. To prevent potential null pointer dereferences, Added a null check.

Reference

https://git.kernel.org/stable/c/27001e4f146624c4b3389b029bdc0f8049819560
https://git.kernel.org/stable/c/4ebbb9106aaa2fd58e0359bc3a2490953db2ef0c
https://git.kernel.org/stable/c/8e9bdb563916287ba1b4258812434e0585ac6d00
https://git.kernel.org/stable/c/9784d832d7c103539cd9afb376534eaa35815d3d
https://git.kernel.org/stable/c/a2436263144980cc99a9860c7b43335847afbe53
https://git.kernel.org/stable/c/d9fa3aae08f99493e67fb79413c0e95d30fca5e9
https://git.kernel.org/stable/c/f642500aa7ed93d2606e4f929244cce9c7467b3a
https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html

CVSS

Base:	5.5
Impact:	3.6
Exploitability:	1.8

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	LOW

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	NONE	HIGH

CVSS vektor

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Zadnje važnije ažuriranje

07-01-2026 - 16:28

Objavljeno

22-08-2025 - 16:15