CVE-2025-40132
- Source
- https://cve.org/CVERecord?id=CVE-2025-40132
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-40132.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2025-40132
- Downstream
- Published
- 2025-11-12T10:23:22.195Z
- Modified
- 2025-12-05T10:22:04.749270Z
- Summary
- ASoC: Intel: sof_sdw: Prevent jump to NULL add_sidecar callback
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
ASoC: Intel: sofsdw: Prevent jump to NULL addsidecar callback
In createsdwdailink() check that sofend->codecinfo->add_sidecar is not NULL before calling it.
The original code assumed that if includesidecar is true, the codec on that link has an addsidecar callback. But there could be other codecs on the same link that do not have an add_sidecar callback.
- Database specific
{ "cna_assigner": "Linux", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/40xxx/CVE-2025-40132.json" }- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/87cab86925b7fa4c1c977bc191ac549a3b23f0ea
- https://git.kernel.org/stable/c/a5416c0fc9e77b69f853dfb1e78bc05a7c06a789
- https://git.kernel.org/stable/c/aea038062edfca9c6e5ddcecd4611d5a80113b4e
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/40xxx/CVE-2025-40132.json
- https://nvd.nist.gov/vuln/detail/CVE-2025-40132
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedda5244180281a18c4c7859674fec308514aaf629Fixedaea038062edfca9c6e5ddcecd4611d5a80113b4eFixeda5416c0fc9e77b69f853dfb1e78bc05a7c06a789Fixed87cab86925b7fa4c1c977bc191ac549a3b23f0ea
Affected versions
v6.*
v6.10
v6.10-rc1
v6.10-rc2
v6.10-rc3
v6.10-rc4
v6.10-rc5
v6.10-rc6
v6.10-rc7
v6.11
v6.11-rc1
v6.11-rc2
v6.11-rc3
v6.11-rc4
v6.11-rc5
v6.11-rc6
v6.11-rc7
v6.12
v6.12-rc1
v6.12-rc2
v6.12-rc3
v6.12-rc4
v6.12-rc5
v6.12-rc6
v6.12-rc7
v6.12.1
v6.12.10
v6.12.11
v6.12.12
v6.12.13
v6.12.14
v6.12.15
v6.12.16
v6.12.17
v6.12.18
v6.12.19
v6.12.2
v6.12.20
v6.12.21
v6.12.22
v6.12.23
v6.12.24
v6.12.25
v6.12.26
v6.12.27
v6.12.28
v6.12.29
v6.12.3
v6.12.30
v6.12.31
v6.12.32
v6.12.33
v6.12.34
v6.12.35
v6.12.36
v6.12.37
v6.12.38
v6.12.39
v6.12.4
v6.12.40
v6.12.41
v6.12.42
v6.12.43
v6.12.44
v6.12.45
v6.12.46
v6.12.47
v6.12.48
v6.12.49
v6.12.5
v6.12.50
v6.12.51
v6.12.52
v6.12.6
v6.12.7
v6.12.8
v6.12.9
v6.13
v6.13-rc1
v6.13-rc2
v6.13-rc3
v6.13-rc4
v6.13-rc5
v6.13-rc6
v6.13-rc7
v6.14
v6.14-rc1
v6.14-rc2
v6.14-rc3
v6.14-rc4
v6.14-rc5
v6.14-rc6
v6.14-rc7
v6.15
v6.15-rc1
v6.15-rc2
v6.15-rc3
v6.15-rc4
v6.15-rc5
v6.15-rc6
v6.15-rc7
v6.16
v6.16-rc1
v6.16-rc2
v6.16-rc3
v6.16-rc4
v6.16-rc5
v6.16-rc6
v6.16-rc7
v6.17
v6.17-rc1
v6.17-rc2
v6.17-rc3
v6.17-rc4
v6.17-rc5
v6.17-rc6
v6.17-rc7
v6.17.1
v6.17.2
v6.9
v6.9-rc3
v6.9-rc4
v6.9-rc5
v6.9-rc6
v6.9-rc7