CVE-2025-38054

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A vulnerability in the Linux kernel has been resolved. The issue was related to the debugfs summary output accessing uninitialized elements in the freq in[] and signal out[] arrays, causing NULL pointer dereferences and triggering a kernel Oops (page fault oops). The patch adds fields to track the number of initialized elements and updates the summary output functions to respect these limits, preventing out-of-bounds access and ensuring safe array handling.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.