VDB
CVE-2025-39708
CVE-2025-39708
PUBLISHED
CVSS 5.5 MEDIUM
In the Linux kernel, the following vulnerability has been resolved: media: iris: Fix NULL pointer dereference A warning reported by smatch indicated a possible null pointer dereference where one of the arguments to API "iris_hfi_gen2_handle_system_error" could sometimes be null. To fix this, add a check to validate that the argument passed is not null before accessing its members.
EPSS 0.03% · 8.3th percentile
Risk Scores
CVSS 3.1
5.5
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
EPSS Score
0.03%
8.3th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| linux | linux_kernel | 6.15, 6.15, 6.15 |
| Linux | Linux | fb583a214337a5600c121c9e1eecbb57fa9db688, 0, 6.16.4 |
Exploit Intelligence
- https://git.kernel.org/stable/c/992ddee3c0da5f113ba86892ace467c1ac645538 (circl)
- https://git.kernel.org/stable/c/0f837559ccdd275c5a059e6ac4d5034b03409f1d (circl)
- TestCaseRule-CVE-2025-38555.yara (github-yara)
- TestCaseRule-CVE-2025-38555.yara (github-yara)
- TestCaseRule-CVE-2025-38555.yara (github-yara)
- TestCaseRule-CVE-2025-38555.yara (github-yara)
- TestCaseRule-CVE-2025-38555.yara (github-yara)
Timeline
- Jan 21, 1970 Security Advisory
- Sep 5, 2025 CVE Published
- Sep 6, 2025 EPSS Score
- Sep 6, 2025 Coalition ESS Score
- Sep 8, 2025 Coalition ESS Score
- Sep 13, 2025 EPSS Score
- Sep 16, 2025 Coalition ESS Score
- Sep 19, 2025 Coalition ESS Score
- Sep 21, 2025 EPSS Score
- Sep 26, 2025 Coalition ESS Score
- Sep 28, 2025 EPSS Score
- Oct 6, 2025 EPSS Score