CVE-2025-38634 - Vulnerability Details

In the Linux kernel, the following vulnerability has been resolved: power: supply: cpcap-charger: Fix null check for power_supply_get_by_name In the cpcap_usb_detect() function, the power_supply_get_by_name() function may return `NULL` instead of an error pointer. To prevent potential null pointer dereferences, Added a null check.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Linux	Linux Kernel

No data.

References

Link	Providers
https://git.kernel.org/stable/c/27001e4f146624c4b3389b029bdc0f8049819560
https://git.kernel.org/stable/c/4ebbb9106aaa2fd58e0359bc3a2490953db2ef0c
https://git.kernel.org/stable/c/8e9bdb563916287ba1b4258812434e0585ac6d00
https://git.kernel.org/stable/c/9784d832d7c103539cd9afb376534eaa35815d3d
https://git.kernel.org/stable/c/a2436263144980cc99a9860c7b43335847afbe53
https://git.kernel.org/stable/c/d9fa3aae08f99493e67fb79413c0e95d30fca5e9
https://git.kernel.org/stable/c/f642500aa7ed93d2606e4f929244cce9c7467b3a
https://lore.kernel.org/linux-cve-announce/2025082233-CVE-2025-38634-d884@gregkh/T
https://nvd.nist.gov/vuln/detail/CVE-2025-38634
https://www.cve.org/CVERecord?id=CVE-2025-38634

History

Thu, 28 Aug 2025 15:00:00 +0000

Type	Values Removed	Values Added
References		https://git.kernel.org/stable/c/4ebbb9106aaa2fd58e0359bc3a2490953db2ef0c

Mon, 25 Aug 2025 12:30:00 +0000

Type	Values Removed	Values Added
References		https://lore.kernel.org/linux-cve-announce/2025082233-CVE-2025-38634-d884@gregkh/T https://nvd.nist.gov/vuln/detail/CVE-2025-38634 https://www.cve.org/CVERecord?id=CVE-2025-38634
Metrics	threat_severity `None`	cvssV3_1 `{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H'}` threat_severity `Moderate`

Sat, 23 Aug 2025 11:00:00 +0000

Type	Values Removed	Values Added
First Time appeared		Linux Linux linux Kernel
Vendors & Products		Linux Linux linux Kernel

Fri, 22 Aug 2025 16:15:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: power: supply: cpcap-charger: Fix null check for power_supply_get_by_name In the cpcap_usb_detect() function, the power_supply_get_by_name() function may return `NULL` instead of an error pointer. To prevent potential null pointer dereferences, Added a null check.
Title		power: supply: cpcap-charger: Fix null check for power_supply_get_by_name
References		https://git.kernel.org/stable/c/27001e4f146624c4b3389b029bdc0f8049819560 https://git.kernel.org/stable/c/8e9bdb563916287ba1b4258812434e0585ac6d00 https://git.kernel.org/stable/c/9784d832d7c103539cd9afb376534eaa35815d3d https://git.kernel.org/stable/c/a2436263144980cc99a9860c7b43335847afbe53 https://git.kernel.org/stable/c/d9fa3aae08f99493e67fb79413c0e95d30fca5e9 https://git.kernel.org/stable/c/f642500aa7ed93d2606e4f929244cce9c7467b3a

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2025-08-22T16:00:42.376Z

Updated: 2025-08-28T14:44:22.137Z

Reserved: 2025-04-16T04:51:24.030Z

Link: CVE-2025-38634

Vulnrichment

No data.

NVD

Status : Awaiting Analysis

Published: 2025-08-22T16:15:37.307

Modified: 2025-08-28T15:15:56.707

Link: CVE-2025-38634

Redhat

Severity : Moderate

Publid Date: 2025-08-22T00:00:00Z

Links: CVE-2025-38634 - Bugzilla

Metrics

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object