CVE-2025-38446

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2025-38446
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-38446.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2025-38446
Downstream
Related
Published
2025-07-25T15:27:28.699Z
Modified
2026-03-23T05:07:48.001552256Z
Summary
clk: imx: Fix an out-of-bounds access in dispmix_csr_clk_dev_data
Details

In the Linux kernel, the following vulnerability has been resolved:

clk: imx: Fix an out-of-bounds access in dispmixcsrclkdevdata

When num_parents is 4, _clkregister() occurs an out-of-bounds when accessing parentnames member. Use ARRAYSIZE() instead of hardcode number here.

BUG: KASAN: global-out-of-bounds in __clkregister+0x1844/0x20d8 Read of size 8 at addr ffff800086988e78 by task kworker/u24:3/59 Hardware name: NXP i.MX95 19X19 board (DT) Workqueue: eventsunbound deferred_probeworkfunc Call trace: dumpbacktrace+0x94/0xec showstack+0x18/0x24 dumpstacklvl+0x8c/0xcc printreport+0x398/0x5fc kasanreport+0xd4/0x114 __asanreportload8_noabort+0x20/0x2c __clkregister+0x1844/0x20d8 clkhw_register+0x44/0x110 _clkhwregistermux+0x284/0x3a8 imx95bcprobe+0x4f4/0xa70

Database specific 
{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/38xxx/CVE-2025-38446.json"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
5224b189462ff70df328f173b71acfd925092c3c
Fixed
fcee75daecc5234ee3482d8cf3518bf021d8a0a5
Fixed
a956daad67cec454ee985e103e167711fab5b9b8
Fixed
aacc875a448d363332b9df0621dde6d3a225ea9f

Affected versions

v6.*
v6.10
v6.10-rc1
v6.10-rc2
v6.10-rc3
v6.10-rc4
v6.10-rc5
v6.10-rc6
v6.10-rc7
v6.11
v6.11-rc1
v6.11-rc2
v6.11-rc3
v6.11-rc4
v6.11-rc5
v6.11-rc6
v6.11-rc7
v6.12
v6.12-rc1
v6.12-rc2
v6.12-rc3
v6.12-rc4
v6.12-rc5
v6.12-rc6
v6.12-rc7
v6.12.1
v6.12.10
v6.12.11
v6.12.12
v6.12.13
v6.12.14
v6.12.15
v6.12.16
v6.12.17
v6.12.18
v6.12.19
v6.12.2
v6.12.20
v6.12.21
v6.12.22
v6.12.23
v6.12.24
v6.12.25
v6.12.26
v6.12.27
v6.12.28
v6.12.29
v6.12.3
v6.12.30
v6.12.31
v6.12.32
v6.12.33
v6.12.34
v6.12.35
v6.12.36
v6.12.37
v6.12.38
v6.12.4
v6.12.5
v6.12.6
v6.12.7
v6.12.8
v6.12.9
v6.13
v6.13-rc1
v6.13-rc2
v6.13-rc3
v6.13-rc4
v6.13-rc5
v6.13-rc6
v6.13-rc7
v6.14
v6.14-rc1
v6.14-rc2
v6.14-rc3
v6.14-rc4
v6.14-rc5
v6.14-rc6
v6.14-rc7
v6.15
v6.15-rc1
v6.15-rc2
v6.15-rc3
v6.15-rc4
v6.15-rc5
v6.15-rc6
v6.15-rc7
v6.15.1
v6.15.2
v6.15.3
v6.15.4
v6.15.5
v6.15.6
v6.16-rc1
v6.9
v6.9-rc2
v6.9-rc3
v6.9-rc4
v6.9-rc5
v6.9-rc6
v6.9-rc7

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-38446.json"
vanir_signatures 
[
    {
        "signature_type": "Line",
        "target": {
            "file": "drivers/clk/imx/clk-imx95-blk-ctl.c"
        },
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@aacc875a448d363332b9df0621dde6d3a225ea9f",
        "id": "CVE-2025-38446-abb73914",
        "digest": {
            "line_hashes": [
                "337123165093039141281017625947864398604",
                "332207271507320948655505978716295248892",
                "265641892337886185169825053692479924668",
                "173572024997233545296447312594565382818",
                "312625312489761237420161494163859414982",
                "115995872449281532557989837852047372558",
                "175527056115584036247569541038635336164",
                "52249334718988377026853178491921546654",
                "231205833006463329886234305308451294776",
                "326589052657141834856739496384301071848",
                "122290178494830542038459369873970033328",
                "3849025236310290744066035652307517785",
                "33179573486255303736265573150049979343"
            ],
            "threshold": 0.9
        },
        "signature_version": "v1"
    }
]