{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"cveId":"CVE-2025-37793","assignerOrgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","state":"PUBLISHED","assignerShortName":"Linux","dateReserved":"2025-04-16T04:51:23.941Z","datePublished":"2025-05-01T13:07:25.516Z","dateUpdated":"2026-05-11T21:15:17.266Z"},"containers":{"cna":{"providerMetadata":{"orgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","shortName":"Linux","dateUpdated":"2026-05-11T21:15:17.266Z"},"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: Intel: avs: Fix null-ptr-deref in avs_component_probe()\n\ndevm_kasprintf() returns NULL when memory allocation fails. Currently,\navs_component_probe() does not check for this case, which results in a\nNULL pointer dereference."}],"affected":[{"product":"Linux","vendor":"Linux","defaultStatus":"unaffected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["sound/soc/intel/avs/pcm.c"],"versions":[{"version":"739c031110da9ba966b0189fa25a2a1c0d42263c","lessThan":"aaa93b8846101461de815759d39979661b82d5a5","status":"affected","versionType":"git"},{"version":"739c031110da9ba966b0189fa25a2a1c0d42263c","lessThan":"23fde311ea1d0a6c36bf92ce48b90b77d0ece1a4","status":"affected","versionType":"git"},{"version":"739c031110da9ba966b0189fa25a2a1c0d42263c","lessThan":"c2825073271b6f15e669a424b363612082494863","status":"affected","versionType":"git"},{"version":"739c031110da9ba966b0189fa25a2a1c0d42263c","lessThan":"95f723cf141b95e3b3a5b92cf2ea98a863fe7275","status":"affected","versionType":"git"}]},{"product":"Linux","vendor":"Linux","defaultStatus":"affected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["sound/soc/intel/avs/pcm.c"],"versions":[{"version":"6.6","status":"affected"},{"version":"0","lessThan":"6.6","status":"unaffected","versionType":"semver"},{"version":"6.6.88","lessThanOrEqual":"6.6.*","status":"unaffected","versionType":"semver"},{"version":"6.12.25","lessThanOrEqual":"6.12.*","status":"unaffected","versionType":"semver"},{"version":"6.14.4","lessThanOrEqual":"6.14.*","status":"unaffected","versionType":"semver"},{"version":"6.15","lessThanOrEqual":"*","status":"unaffected","versionType":"original_commit_for_fix"}]}],"cpeApplicability":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.6","versionEndExcluding":"6.6.88"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.6","versionEndExcluding":"6.12.25"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.6","versionEndExcluding":"6.14.4"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.6","versionEndExcluding":"6.15"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/aaa93b8846101461de815759d39979661b82d5a5"},{"url":"https://git.kernel.org/stable/c/23fde311ea1d0a6c36bf92ce48b90b77d0ece1a4"},{"url":"https://git.kernel.org/stable/c/c2825073271b6f15e669a424b363612082494863"},{"url":"https://git.kernel.org/stable/c/95f723cf141b95e3b3a5b92cf2ea98a863fe7275"}],"title":"ASoC: Intel: avs: Fix null-ptr-deref in avs_component_probe()","x_generator":{"engine":"bippy-1.2.0"}}}}