CVE-2025-40224

UNKNOWN 0.0

hwmon: (cgbc-hwmon) Add missing NULL check after devm_kzalloc()

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

In the Linux kernel, the following vulnerability has been resolved: hwmon: (cgbc-hwmon) Add missing NULL check after devm_kzalloc() The driver allocates memory for sensor data using devm_kzalloc(), but did not check if the allocation succeeded. In case of memory allocation failure, dereferencing the NULL pointer would lead to a kernel crash. Add a NULL pointer check and return -ENOMEM to handle allocation failure properly.

Vendor	linux
Product	linux
Ecosystems	Linux Kernel
Industries	Technology
Published	Dec 4, 2025
Last Updated	May 11, 2026

Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new unknown vulnerabilities affecting linux linux are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Linux / Linux

08ebc9def79fc0c4dbb6ecc39263006e3f98b750 < 240b82b86a091c1aa49d951d4467425420a081a0 08ebc9def79fc0c4dbb6ecc39263006e3f98b750 < a09a5aa8bf258ddc99a22c30f17fe304b96b5350

Linux / Linux

6.15

References

NVD ↗ CVE.org ↗ EPSS Data ↗

git.kernel.org: https://git.kernel.org/stable/c/240b82b86a091c1aa49d951d4467425420a081a0 git.kernel.org: https://git.kernel.org/stable/c/a09a5aa8bf258ddc99a22c30f17fe304b96b5350