CVE-2025-40338

UNKNOWN 0.0

ASoC: Intel: avs: Do not share the name pointer between components

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

In the Linux kernel, the following vulnerability has been resolved: ASoC: Intel: avs: Do not share the name pointer between components By sharing 'name' directly, tearing down components may lead to use-after-free errors. Duplicate the name to avoid that. At the same time, update the order of operations - since commit cee28113db17 ("ASoC: dmaengine_pcm: Allow passing component name via config") the framework does not override component->name if set before invoking the initializer.

Vendor	linux
Product	linux
Ecosystems	Linux Kernel
Industries	Technology
Published	Dec 9, 2025
Last Updated	May 11, 2026

Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new unknown vulnerabilities affecting linux linux are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Linux / Linux

f1b3b320bd6519b16e3480f74f2926d106e3bcba < 128bf29c992988f8b4f3829227339908fde5ec86 f1b3b320bd6519b16e3480f74f2926d106e3bcba < 4dee5c1cc439b0d5ef87f741518268ad6a95b23d

Linux / Linux

5.19

References

NVD ↗ CVE.org ↗ EPSS Data ↗

git.kernel.org: https://git.kernel.org/stable/c/128bf29c992988f8b4f3829227339908fde5ec86 git.kernel.org: https://git.kernel.org/stable/c/4dee5c1cc439b0d5ef87f741518268ad6a95b23d