CVE-2025-21847

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2025-21847
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-21847.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2025-21847
Downstream
Related
Published
2025-03-12T09:42:03.568Z
Modified
2025-11-20T08:24:01.074908Z
Severity
  • 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
ASoC: SOF: stream-ipc: Check for cstream nullity in sof_ipc_msg_data()
Details

In the Linux kernel, the following vulnerability has been resolved:

ASoC: SOF: stream-ipc: Check for cstream nullity in sofipcmsg_data()

The nullity of sps->cstream should be checked similarly as it is done in sofsetstreamdataoffset() function. Assuming that it is not NULL if sps->stream is NULL is incorrect and can lead to NULL pointer dereference.

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
090349a9feba3ceee3997d31d68ffe54e5b57acb
Fixed
2b3878baf90918a361a3dfd3513025100b1b40b6
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
090349a9feba3ceee3997d31d68ffe54e5b57acb
Fixed
62ab1ae5511c59b5f0bf550136ff321331adca9f
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
090349a9feba3ceee3997d31d68ffe54e5b57acb
Fixed
6c18f5eb2043ebf4674c08a9690218dc818a11ab
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
090349a9feba3ceee3997d31d68ffe54e5b57acb
Fixed
d8d99c3b5c485f339864aeaa29f76269cc0ea975

Affected versions

v6.*

v6.10
v6.10-rc1
v6.10-rc2
v6.10-rc3
v6.10-rc4
v6.10-rc5
v6.10-rc6
v6.10-rc7
v6.11
v6.11-rc1
v6.11-rc2
v6.11-rc3
v6.11-rc4
v6.11-rc5
v6.11-rc6
v6.11-rc7
v6.12
v6.12-rc1
v6.12-rc2
v6.12-rc3
v6.12-rc4
v6.12-rc5
v6.12-rc6
v6.12-rc7
v6.12.1
v6.12.10
v6.12.11
v6.12.12
v6.12.13
v6.12.14
v6.12.15
v6.12.16
v6.12.2
v6.12.3
v6.12.4
v6.12.5
v6.12.6
v6.12.7
v6.12.8
v6.12.9
v6.13
v6.13-rc1
v6.13-rc2
v6.13-rc3
v6.13-rc4
v6.13-rc5
v6.13-rc6
v6.13-rc7
v6.13.1
v6.13.2
v6.13.3
v6.13.4
v6.14-rc1
v6.2
v6.2-rc2
v6.2-rc3
v6.2-rc4
v6.2-rc5
v6.2-rc6
v6.2-rc7
v6.2-rc8
v6.3
v6.3-rc1
v6.3-rc2
v6.3-rc3
v6.3-rc4
v6.3-rc5
v6.3-rc6
v6.3-rc7
v6.4
v6.4-rc1
v6.4-rc2
v6.4-rc3
v6.4-rc4
v6.4-rc5
v6.4-rc6
v6.4-rc7
v6.5
v6.5-rc1
v6.5-rc2
v6.5-rc3
v6.5-rc4
v6.5-rc5
v6.5-rc6
v6.5-rc7
v6.6
v6.6-rc1
v6.6-rc2
v6.6-rc3
v6.6-rc4
v6.6-rc5
v6.6-rc6
v6.6-rc7
v6.6.1
v6.6.10
v6.6.11
v6.6.12
v6.6.13
v6.6.14
v6.6.15
v6.6.16
v6.6.17
v6.6.18
v6.6.19
v6.6.2
v6.6.20
v6.6.21
v6.6.22
v6.6.23
v6.6.24
v6.6.25
v6.6.26
v6.6.27
v6.6.28
v6.6.29
v6.6.3
v6.6.30
v6.6.31
v6.6.32
v6.6.33
v6.6.34
v6.6.35
v6.6.36
v6.6.37
v6.6.38
v6.6.39
v6.6.4
v6.6.40
v6.6.41
v6.6.42
v6.6.43
v6.6.44
v6.6.45
v6.6.46
v6.6.47
v6.6.48
v6.6.49
v6.6.5
v6.6.50
v6.6.51
v6.6.52
v6.6.53
v6.6.54
v6.6.55
v6.6.56
v6.6.57
v6.6.58
v6.6.59
v6.6.6
v6.6.60
v6.6.61
v6.6.62
v6.6.63
v6.6.64
v6.6.65
v6.6.66
v6.6.67
v6.6.68
v6.6.69
v6.6.7
v6.6.70
v6.6.71
v6.6.72
v6.6.73
v6.6.74
v6.6.75
v6.6.76
v6.6.77
v6.6.78
v6.6.79
v6.6.8
v6.6.9
v6.7
v6.7-rc1
v6.7-rc2
v6.7-rc3
v6.7-rc4
v6.7-rc5
v6.7-rc6
v6.7-rc7
v6.7-rc8
v6.8
v6.8-rc1
v6.8-rc2
v6.8-rc3
v6.8-rc4
v6.8-rc5
v6.8-rc6
v6.8-rc7
v6.9
v6.9-rc1
v6.9-rc2
v6.9-rc3
v6.9-rc4
v6.9-rc5
v6.9-rc6
v6.9-rc7

Database specific

vanir_signatures

[
    {
        "signature_type": "Line",
        "deprecated": false,
        "target": {
            "file": "sound/soc/sof/stream-ipc.c"
        },
        "digest": {
            "line_hashes": [
                "35088763365664184172925708184175557238",
                "52451002438406795846002120438213377709",
                "288779136264254499111234348857609287007",
                "338359147751673602187676209431874141451",
                "70084309930705923525115259683513868918",
                "241699954557021016086276719539724258821",
                "60965043804149851759760412117530216621",
                "206545699896795325820056363135121544359"
            ],
            "threshold": 0.9
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@2b3878baf90918a361a3dfd3513025100b1b40b6",
        "signature_version": "v1",
        "id": "CVE-2025-21847-06faa607"
    },
    {
        "signature_type": "Function",
        "deprecated": false,
        "target": {
            "file": "sound/soc/sof/stream-ipc.c",
            "function": "sof_ipc_msg_data"
        },
        "digest": {
            "length": 538.0,
            "function_hash": "223665294876003773150919600997371967860"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@2b3878baf90918a361a3dfd3513025100b1b40b6",
        "signature_version": "v1",
        "id": "CVE-2025-21847-08717984"
    },
    {
        "signature_type": "Line",
        "deprecated": false,
        "target": {
            "file": "sound/soc/sof/stream-ipc.c"
        },
        "digest": {
            "line_hashes": [
                "35088763365664184172925708184175557238",
                "52451002438406795846002120438213377709",
                "288779136264254499111234348857609287007",
                "338359147751673602187676209431874141451",
                "70084309930705923525115259683513868918",
                "241699954557021016086276719539724258821",
                "60965043804149851759760412117530216621",
                "206545699896795325820056363135121544359"
            ],
            "threshold": 0.9
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@d8d99c3b5c485f339864aeaa29f76269cc0ea975",
        "signature_version": "v1",
        "id": "CVE-2025-21847-6afbebbc"
    },
    {
        "signature_type": "Line",
        "deprecated": false,
        "target": {
            "file": "sound/soc/sof/stream-ipc.c"
        },
        "digest": {
            "line_hashes": [
                "35088763365664184172925708184175557238",
                "52451002438406795846002120438213377709",
                "288779136264254499111234348857609287007",
                "338359147751673602187676209431874141451",
                "70084309930705923525115259683513868918",
                "241699954557021016086276719539724258821",
                "60965043804149851759760412117530216621",
                "206545699896795325820056363135121544359"
            ],
            "threshold": 0.9
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@62ab1ae5511c59b5f0bf550136ff321331adca9f",
        "signature_version": "v1",
        "id": "CVE-2025-21847-b02c1d3c"
    },
    {
        "signature_type": "Function",
        "deprecated": false,
        "target": {
            "file": "sound/soc/sof/stream-ipc.c",
            "function": "sof_ipc_msg_data"
        },
        "digest": {
            "length": 538.0,
            "function_hash": "223665294876003773150919600997371967860"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@62ab1ae5511c59b5f0bf550136ff321331adca9f",
        "signature_version": "v1",
        "id": "CVE-2025-21847-c22e8c97"
    },
    {
        "signature_type": "Function",
        "deprecated": false,
        "target": {
            "file": "sound/soc/sof/stream-ipc.c",
            "function": "sof_ipc_msg_data"
        },
        "digest": {
            "length": 538.0,
            "function_hash": "223665294876003773150919600997371967860"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@d8d99c3b5c485f339864aeaa29f76269cc0ea975",
        "signature_version": "v1",
        "id": "CVE-2025-21847-dda6f25c"
    }
]

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
6.3.0
Fixed
6.6.80
Type
ECOSYSTEM
Events
Introduced
6.7.0
Fixed
6.12.17
Type
ECOSYSTEM
Events
Introduced
6.13.0
Fixed
6.13.5