CVE-2025-38007
MEDIUMLinux Kernel 6.1.53-6.1.139 - NULL Pointer Dereference in HID uclogic Input Configuration
Title source: llmDescription
In the Linux kernel, the following vulnerability has been resolved: HID: uclogic: Add NULL check in uclogic_input_configured() devm_kasprintf() returns NULL when memory allocation fails. Currently, uclogic_input_configured() does not check for this case, which results in a NULL pointer dereference. Add NULL check after devm_kasprintf() to prevent this issue.
References (8)
Core 8
Core References
Third Party Advisory
https://lists.debian.org/debian-lts-announce/2025/08/msg00010.html
Scores
CVSS v3
5.5
EPSS
0.0016
EPSS Percentile
36.1%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Details
CWE
CWE-476
Status
published
Products (22)
debian/debian_linux
11.0
Linux/Linux
< 6.6
Linux/Linux
4c2707dfee5847dc0b5ecfbe512c29c93832fdc4
Linux/Linux
51f49e3927ad545cec0c0afb86856ccacd9f085d - 00d52b2fa6083dd0f5c44f3604cd1bad1f9177dc
Linux/Linux
58f0d1c0e494a88f301bf455da7df4366f179bbb
Linux/Linux
6.1.140 - 6.1.*
Linux/Linux
6.1.53 - 6.1.140
Linux/Linux
6.12.30 - 6.12.*
Linux/Linux
6.14.8 - 6.14.*
Linux/Linux
6.15
... and 12 more
Published
Jun 18, 2025
Tracked Since
Feb 18, 2026