mirror of
https://github.com/0xMarcio/cve.git
synced 2025-11-28 18:48:49 +00:00
1.3 KiB
1.3 KiB
CVE-2025-38275
Description
In the Linux kernel, the following vulnerability has been resolved:phy: qcom-qmp-usb: Fix an NULL vs IS_ERR() bugThe qmp_usb_iomap() helper function currently returns the raw result ofdevm_ioremap() for non-exclusive mappings. Since devm_ioremap() may returna NULL pointer and the caller only checks error pointers with IS_ERR(),NULL could bypass the check and lead to an invalid dereference.Fix the issue by checking if devm_ioremap() returns NULL. When it does,qmp_usb_iomap() now returns an error pointer via IOMEM_ERR_PTR(-ENOMEM),ensuring safe and consistent error handling.
POC
Reference
No PoCs from references.