CVE-2025-40015

Linux Kernel 6.15-6.16.10, 6.17.0, and >=e7bad98c205d17c745de9d83ebf73e53cbf99d48 - Null Pointer Dereference

Title source: llm
STIX 2.1

Description

In the Linux kernel, the following vulnerability has been resolved: media: stm32-csi: Fix dereference before NULL check In 'stm32_csi_start', 'csidev->s_subdev' is dereferenced directly while assigning a value to the 'src_pad'. However the same value is being checked against NULL at a later point of time indicating that there are chances that the value can be NULL. Move the dereference after the NULL check.

Scores

EPSS 0.0022
EPSS Percentile 12.4%

Details

Status published
Products (10)
linux/Kernel 6.15.0 - 6.16.11linux
linux/Kernel 6.17.0 - 6.17.1linux
Linux/Linux < 6.15
Linux/Linux 6.15
Linux/Linux 6.16.11 - 6.16.*
Linux/Linux 6.17.1 - 6.17.*
Linux/Linux 6.18
Linux/Linux e7bad98c205d17c745de9d83ebf73e53cbf99d48 - 1f053d82e59c785b2b939cbed12f13657f84b296
Linux/Linux e7bad98c205d17c745de9d83ebf73e53cbf99d48 - 4eeafff163e80d576c5efc1360ae310c0ceedd02
Linux/Linux e7bad98c205d17c745de9d83ebf73e53cbf99d48 - 80eaf32672871bd2623ce6ba13ffc1f018756580
Published Oct 20, 2025
Tracked Since Feb 18, 2026