In the Linux kernel, the following vulnerability has been... · CVE-2025-38281 · GitHub Advisory Database · GitHub

In the Linux kernel, the following vulnerability has been...

Moderate severity Unreviewed Published Jul 10, 2025 to the GitHub Advisory Database • Updated Nov 20, 2025

Package

No package listed— Suggest a package

Affected versions

Unknown

Patched versions

Unknown

Description

In the Linux kernel, the following vulnerability has been resolved:

wifi: mt76: mt7996: Add NULL check in mt7996_thermal_init

devm_kasprintf() can return a NULL pointer on failure,but this
returned value in mt7996_thermal_init() is not checked.
Add NULL check in mt7996_thermal_init(), to handle kernel NULL
pointer dereference error.

References

Published by the National Vulnerability Database

Jul 10, 2025

Published to the GitHub Advisory Database Jul 10, 2025

Last updated Nov 20, 2025

Severity

Moderate

/ 10

CVSS v3 base metrics

Attack vector

Local

Attack complexity

Low

Privileges required

Low

User interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H