CVE-2025-40045

Linux Kernel 6.11-6.12.52, 6.13-6.17.2, 6.18 - Memory Corruption via SoundWire Port Mapping

Title source: llm
STIX 2.1

Description

In the Linux kernel, the following vulnerability has been resolved: ASoC: codecs: wcd937x: set the comp soundwire port correctly For some reason we endup with setting soundwire port for HPHL_COMP and HPHR_COMP as zero, this can potentially result in a memory corruption due to accessing and setting -1 th element of port_map array.

Scores

EPSS 0.0019
EPSS Percentile 9.3%

Details

Status published
Products (10)
linux/Kernel 6.11.0 - 6.12.53linux
linux/Kernel 6.13.0 - 6.17.3linux
Linux/Linux < 6.11
Linux/Linux 6.11
Linux/Linux 6.12.53 - 6.12.*
Linux/Linux 6.17.3 - 6.17.*
Linux/Linux 6.18
Linux/Linux 82be8c62a38c6a44e64ecb29d7a9b5cb35c6cad4 - 1a1ca38392e7e896075afc8905ddaea525ed30f7
Linux/Linux 82be8c62a38c6a44e64ecb29d7a9b5cb35c6cad4 - 66a940b1bf48a7095162688332d725ba160154eb
Linux/Linux 82be8c62a38c6a44e64ecb29d7a9b5cb35c6cad4 - abcd537aae3b84c6d10ad147e99a204bcb56b234
Published Oct 28, 2025
Tracked Since Feb 18, 2026