VDB

CVE-2025-39959

CVE-2025-39959 PUBLISHED

In the Linux kernel, the following vulnerability has been resolved: ASoC: amd: acp: Fix incorrect retrival of acp_chip_info Use dev_get_drvdata(dev->parent) instead of dev_get_platdata(dev) to correctly obtain acp_chip_info members in the acp I2S driver. Previously, some members were not updated properly due to incorrect data access, which could potentially lead to null pointer dereferences. This issue was missed in the earlier commit ("ASoC: amd: acp: Fix NULL pointer deref in acp_i2s_set_tdm_slot"), which only addressed set_tdm_slot(). This change ensures that all relevant functions correctly retrieve acp_chip_info, preventing further null pointer dereference issues.

EPSS 0.02% · 5.7th percentile

Risk Scores

EPSS Score
0.02%
5.7th percentile

Affected Products

VendorProductVersions
linuxlinux_kernel6.15, 6.15, 6.17
LinuxLinuxe3933683b25e2cc94485da4909e3338e1a177b39, 6.16.9, 6.17

Timeline

  • Jan 21, 1970 Security Advisory
  • Oct 9, 2025 EPSS Score
  • Oct 9, 2025 Coalition ESS Score
  • Oct 9, 2025 CVE Published
  • Oct 10, 2025 Coalition ESS Score
  • Oct 15, 2025 EPSS Score
  • Oct 17, 2025 Coalition ESS Score
  • Oct 22, 2025 EPSS Score
  • Oct 28, 2025 EPSS Score
  • Nov 2, 2025 Coalition ESS Score
  • Nov 3, 2025 EPSS Score
  • Nov 10, 2025 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›