Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: serial: Fix potential null-ptr-deref in mlb_usio_probe() devm_ioremap() can return NULL on error. Currently, mlb_usio_probe() does not check for this case, which could result in a NULL pointer dereference. Add NULL check after devm_ioremap() to prevent this issue.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | >= 5.2, < 5.4.295 |
| Debian | Debian Linux | 11.0 |
Related Weaknesses (CWE)
References
- https://git.kernel.org/stable/c/19fd9f5a69363d33079097d866eb6082d61bf31dPatch
- https://git.kernel.org/stable/c/548b0e81b9a0902a8bc8259430ed965663baadfcPatch
- https://git.kernel.org/stable/c/81159a6b064142b993f2f39828b77e199c77872aPatch
- https://git.kernel.org/stable/c/86bcae88c9209e334b2f8c252f4cc66beb261886Patch
- https://git.kernel.org/stable/c/a05ebe384c7ca75476453f3070c67d9cf1d1a89fPatch
- https://git.kernel.org/stable/c/a6c7c365734cd0fa1c5aa225a6294fdf80cad2eaPatch
- https://git.kernel.org/stable/c/c23d87b43f7dba5eb12820f6cf21a1cd4f63eb3dPatch
- https://git.kernel.org/stable/c/e1b144aebe6fb898d96ced8c990d7aa38fda4a7aPatch
- https://lists.debian.org/debian-lts-announce/2025/10/msg00007.htmlThird Party Advisory
- https://lists.debian.org/debian-lts-announce/2025/10/msg00008.htmlThird Party Advisory
FAQ
What is CVE-2025-38135?
CVE-2025-38135 is a vulnerability with a CVSS score of 5.5 (MEDIUM). In the Linux kernel, the following vulnerability has been resolved: serial: Fix potential null-ptr-deref in mlb_usio_probe() devm_ioremap() can return NULL on error. Currently, mlb_usio_probe() does...
How severe is CVE-2025-38135?
CVE-2025-38135 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2025-38135?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel, Debian Debian Linux.