{"id":"CVE-2025-38307","summary":"ASoC: Intel: avs: Verify content returned by parse_int_array()","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: Intel: avs: Verify content returned by parse_int_array()\n\nThe first element of the returned array stores its length. If it is 0,\nany manipulation beyond the element at index 0 ends with null-ptr-deref.","modified":"2026-04-16T00:08:22.664176377Z","published":"2025-07-10T07:42:17.427Z","related":["SUSE-SU-2025:02853-1","SUSE-SU-2025:02923-1","SUSE-SU-2025:02969-1","SUSE-SU-2025:02996-1","SUSE-SU-2025:02997-1","SUSE-SU-2025:03011-1","SUSE-SU-2025:03023-1","SUSE-SU-2025:20577-1","SUSE-SU-2025:20586-1","SUSE-SU-2025:20601-1","SUSE-SU-2025:20602-1","SUSE-SU-2025:21074-1","SUSE-SU-2025:21139-1","SUSE-SU-2025:21179-1","openSUSE-SU-2025:20081-1"],"database_specific":{"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/38xxx/CVE-2025-38307.json","cna_assigner":"Linux"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/18ff538aac63de1866e5a49d57e22788b5c21d12"},{"type":"WEB","url":"https://git.kernel.org/stable/c/2916794ffbce604cc2cda105f6b8a4a7c748dd7f"},{"type":"WEB","url":"https://git.kernel.org/stable/c/93e246b6769bdacb09cfff4ea0f00fe5ab4f0d7a"},{"type":"WEB","url":"https://git.kernel.org/stable/c/cc03c899e6d9812b25c3754c9a95c3830c4aec26"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/38xxx/CVE-2025-38307.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-38307"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"5a565ba23abe478f3d4c3b0c8798bcb5215b82f5"},{"fixed":"cc03c899e6d9812b25c3754c9a95c3830c4aec26"},{"fixed":"18ff538aac63de1866e5a49d57e22788b5c21d12"},{"fixed":"2916794ffbce604cc2cda105f6b8a4a7c748dd7f"},{"fixed":"93e246b6769bdacb09cfff4ea0f00fe5ab4f0d7a"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-38307.json"}}],"schema_version":"1.7.5"}