{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"cveId":"CVE-2025-40116","assignerOrgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","state":"PUBLISHED","assignerShortName":"Linux","dateReserved":"2025-04-16T07:20:57.168Z","datePublished":"2025-11-12T10:23:17.569Z","dateUpdated":"2026-05-11T21:42:57.610Z"},"containers":{"cna":{"providerMetadata":{"orgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","shortName":"Linux","dateUpdated":"2026-05-11T21:42:57.610Z"},"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nusb: host: max3421-hcd: Fix error pointer dereference in probe cleanup\n\nThe kthread_run() function returns error pointers so the\nmax3421_hcd->spi_thread pointer can be either error pointers or NULL.\nCheck for both before dereferencing it."}],"affected":[{"product":"Linux","vendor":"Linux","defaultStatus":"unaffected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["drivers/usb/host/max3421-hcd.c"],"versions":[{"version":"05dfa5c9bc37933181b619e42ec0eeb41ef31362","lessThan":"89838fe5c6c010ff8d3924f22afd9c18c5c95310","status":"affected","versionType":"git"},{"version":"05dfa5c9bc37933181b619e42ec0eeb41ef31362","lessThan":"3facf69a735e730ae36387f18780fe420708aa91","status":"affected","versionType":"git"},{"version":"05dfa5c9bc37933181b619e42ec0eeb41ef31362","lessThan":"e0e0ce06f3571be9b26790e4df56ba37b1de8543","status":"affected","versionType":"git"},{"version":"05dfa5c9bc37933181b619e42ec0eeb41ef31362","lessThan":"3723c3dda1cc82c9bbca08fcbd46705a361bfd56","status":"affected","versionType":"git"},{"version":"05dfa5c9bc37933181b619e42ec0eeb41ef31362","lessThan":"b0439e3762ac9ea580f714e1504a1827d1ad32f5","status":"affected","versionType":"git"},{"version":"05dfa5c9bc37933181b619e42ec0eeb41ef31362","lessThan":"e68ea6de1d0551f90d7a2c75f82cb3ebe5e397dc","status":"affected","versionType":"git"},{"version":"05dfa5c9bc37933181b619e42ec0eeb41ef31362","lessThan":"b682ce44bf20ada752a2f6ce70d5a575c56f6a35","status":"affected","versionType":"git"},{"version":"05dfa5c9bc37933181b619e42ec0eeb41ef31362","lessThan":"186e8f2bdba551f3ae23396caccd452d985c23e3","status":"affected","versionType":"git"}]},{"product":"Linux","vendor":"Linux","defaultStatus":"affected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["drivers/usb/host/max3421-hcd.c"],"versions":[{"version":"3.16","status":"affected"},{"version":"0","lessThan":"3.16","status":"unaffected","versionType":"semver"},{"version":"5.4.301","lessThanOrEqual":"5.4.*","status":"unaffected","versionType":"semver"},{"version":"5.10.246","lessThanOrEqual":"5.10.*","status":"unaffected","versionType":"semver"},{"version":"5.15.195","lessThanOrEqual":"5.15.*","status":"unaffected","versionType":"semver"},{"version":"6.1.156","lessThanOrEqual":"6.1.*","status":"unaffected","versionType":"semver"},{"version":"6.6.112","lessThanOrEqual":"6.6.*","status":"unaffected","versionType":"semver"},{"version":"6.12.53","lessThanOrEqual":"6.12.*","status":"unaffected","versionType":"semver"},{"version":"6.17.3","lessThanOrEqual":"6.17.*","status":"unaffected","versionType":"semver"},{"version":"6.18","lessThanOrEqual":"*","status":"unaffected","versionType":"original_commit_for_fix"}]}],"cpeApplicability":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"3.16","versionEndExcluding":"5.4.301"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"3.16","versionEndExcluding":"5.10.246"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"3.16","versionEndExcluding":"5.15.195"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"3.16","versionEndExcluding":"6.1.156"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"3.16","versionEndExcluding":"6.6.112"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"3.16","versionEndExcluding":"6.12.53"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"3.16","versionEndExcluding":"6.17.3"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"3.16","versionEndExcluding":"6.18"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/89838fe5c6c010ff8d3924f22afd9c18c5c95310"},{"url":"https://git.kernel.org/stable/c/3facf69a735e730ae36387f18780fe420708aa91"},{"url":"https://git.kernel.org/stable/c/e0e0ce06f3571be9b26790e4df56ba37b1de8543"},{"url":"https://git.kernel.org/stable/c/3723c3dda1cc82c9bbca08fcbd46705a361bfd56"},{"url":"https://git.kernel.org/stable/c/b0439e3762ac9ea580f714e1504a1827d1ad32f5"},{"url":"https://git.kernel.org/stable/c/e68ea6de1d0551f90d7a2c75f82cb3ebe5e397dc"},{"url":"https://git.kernel.org/stable/c/b682ce44bf20ada752a2f6ce70d5a575c56f6a35"},{"url":"https://git.kernel.org/stable/c/186e8f2bdba551f3ae23396caccd452d985c23e3"}],"title":"usb: host: max3421-hcd: Fix error pointer dereference in probe cleanup","x_generator":{"engine":"bippy-1.2.0"}}}}