CVE-2025-40098

{"id": "CVE-2025-40098", "cveTags": [], "metrics": {}, "published": "2025-10-30T10:15:34.260", "references": [{"url": "https://git.kernel.org/stable/c/8527bbb33936340525a3504a00932b2f8fd75754", "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}, {"url": "https://git.kernel.org/stable/c/b518386db2b993d786c431caa9f46ce063c5cb05", "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}], "vulnStatus": "Awaiting Analysis", "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: hda: cs35l41: Fix NULL pointer dereference in cs35l41_get_acpi_mute_state()\n\nReturn value of a function acpi_evaluate_dsm() is dereferenced without\nchecking for NULL, but it is usually checked for this function.\n\nacpi_evaluate_dsm() may return NULL, when acpi_evaluate_object() returns\nacpi_status other than ACPI_SUCCESS, so add a check to prevent the crach.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE."}], "lastModified": "2025-10-30T15:03:13.440", "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}