CVE-2025-68205
- Source
- https://cve.org/CVERecord?id=CVE-2025-68205
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-68205.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2025-68205
- Downstream
- Published
- 2025-12-16T13:48:32.888Z
- Modified
- 2025-12-16T20:23:38.841233Z
- Summary
- ALSA: hda/hdmi: Fix breakage at probing nvhdmi-mcp driver
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
ALSA: hda/hdmi: Fix breakage at probing nvhdmi-mcp driver
After restructuring and splitting the HDMI codec driver code, each HDMI codec driver contains the own buildcontrols and buildpcms ops. A copy-n-paste error put the wrong entries for nvhdmi-mcp driver; both buildcontrols and buildpcms are swapped. Unfortunately both callbacks have the very same form, and the compiler didn't complain it, either. This resulted in a NULL dereference because the PCM instance hasn't been initialized at calling the build_controls callback.
Fix it by passing the proper entries.
- Database specific
{ "cna_assigner": "Linux", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/68xxx/CVE-2025-68205.json" }- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/82420bd4e17bdaba8453fbf9e10c58c9ed0c9727
- https://git.kernel.org/stable/c/d2aed6fac1148528181affb781aa683d6569042b
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/68xxx/CVE-2025-68205.json
- https://nvd.nist.gov/vuln/detail/CVE-2025-68205
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedad781b550f9a8829e3dae4bd3d18c4a126a53d04Fixedd2aed6fac1148528181affb781aa683d6569042bFixed82420bd4e17bdaba8453fbf9e10c58c9ed0c9727