CVE-2025-37971

MEDIUM

Linux kernel - Null Pointer Dereference

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: staging: bcm2835-camera: Initialise dev in v4l2_dev Commit 42a2f6664e18 ("staging: vc04_services: Move global g_state to vchiq_state") changed mmal_init to pass dev->v4l2_dev.dev to vchiq_mmal_init, however nothing iniitialised dev->v4l2_dev, so we got a NULL pointer dereference. Set dev->v4l2_dev.dev during bcm2835_mmal_probe. The device pointer could be passed into v4l2_device_register to set it, however that also has other effects that would need additional changes.

References (3)

Core 3

Core References

Patch

https://git.kernel.org/stable/c/06753f49336ab161ea0e249a0720125b81b7b31b

Patch

https://git.kernel.org/stable/c/b70bdd4923e8b8edbacde2af83ca337bb7005261

Patch

https://git.kernel.org/stable/c/98698ca0e58734bc5c1c24e5bbc7429f981cd186

Scores

CVSS v3 5.5

EPSS 0.0015

EPSS Percentile 4.2%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-476

Status published

Products (12)

linux/Kernel 6.10.0 - 6.12.29linux

linux/Kernel 6.13.0 - 6.14.7linux

Linux/Linux < 6.10

Linux/Linux 42a2f6664e18874302623f31edef545ef41e1d14 - 06753f49336ab161ea0e249a0720125b81b7b31b

Linux/Linux 42a2f6664e18874302623f31edef545ef41e1d14 - 98698ca0e58734bc5c1c24e5bbc7429f981cd186

Linux/Linux 42a2f6664e18874302623f31edef545ef41e1d14 - b70bdd4923e8b8edbacde2af83ca337bb7005261

Linux/Linux 6.10

Linux/Linux 6.12.29 - 6.12.*

Linux/Linux 6.14.7 - 6.14.*

Linux/Linux 6.15

... and 2 more

Published May 20, 2025

Tracked Since Feb 18, 2026