CVE-2025-38438

UNKNOWN 0.0

ASoC: SOF: Intel: hda: Use devm_kstrdup() to avoid memleak.

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

In the Linux kernel, the following vulnerability has been resolved: ASoC: SOF: Intel: hda: Use devm_kstrdup() to avoid memleak. sof_pdata->tplg_filename can have address allocated by kstrdup() and can be overwritten. Memory leak was detected with kmemleak: unreferenced object 0xffff88812391ff60 (size 16): comm "kworker/4:1", pid 161, jiffies 4294802931 hex dump (first 16 bytes): 73 6f 66 2d 68 64 61 2d 67 65 6e 65 72 69 63 00 sof-hda-generic. backtrace (crc 4bf1675c): __kmalloc_node_track_caller_noprof+0x49c/0x6b0 kstrdup+0x46/0xc0 hda_machine_select.cold+0x1de/0x12cf [snd_sof_intel_hda_generic] sof_init_environment+0x16f/0xb50 [snd_sof] sof_probe_continue+0x45/0x7c0 [snd_sof] sof_probe_work+0x1e/0x40 [snd_sof] process_one_work+0x894/0x14b0 worker_thread+0x5e5/0xfb0 kthread+0x39d/0x760 ret_from_fork+0x31/0x70 ret_from_fork_asm+0x1a/0x30

Vendor	linux
Product	linux
Ecosystems	Linux Kernel
Industries	Technology
Published	Jul 25, 2025
Last Updated	May 11, 2026

Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new unknown vulnerabilities affecting linux linux are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Linux / Linux

dd96daca6c83ecaf37f38ff49d8d174bbff576b4 < 68397fda2caa90e99a7c0bcb2cf604e42ef3b91f dd96daca6c83ecaf37f38ff49d8d174bbff576b4 < 58ecf51af12cb32b890858b52b2c34e80590c74a dd96daca6c83ecaf37f38ff49d8d174bbff576b4 < 6c038b58a2dc5a008c7e7a1297f5aaa4deaaaa7e

Linux / Linux

5.2

References

NVD ↗ CVE.org ↗ EPSS Data ↗

git.kernel.org: https://git.kernel.org/stable/c/68397fda2caa90e99a7c0bcb2cf604e42ef3b91f git.kernel.org: https://git.kernel.org/stable/c/58ecf51af12cb32b890858b52b2c34e80590c74a git.kernel.org: https://git.kernel.org/stable/c/6c038b58a2dc5a008c7e7a1297f5aaa4deaaaa7e