CVE-2025-40015

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains a flaw in the stm32-csi driver where a memory dereference occurs before a NULL check within the stm32 csi start function. Specifically, csidev->s subdev is dereferenced before being verified for a NULL value, potentially leading to issues if the value is NULL. The issue is addressed by moving the dereference operation after the NULL check.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.