CVE-2025-38619

CVSS v2.0

6.2

Medium

Vector

AV:L/AC:L/Au:S/C:N/I:C/A:C

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.16.0-rc3+

Description: A list deletion corruption issue was resolved in the ti csi2rx dma callback() function within the Linux kernel. If ti csi2rx start dma() fails, the buffer is marked as an error but remains in the DMA queue, leading to a double list deletion and subsequent list corruption, potentially causing a kernel panic.

Recommendations: Update to a newer version of the Linux kernel to address this issue.

Exploit

Fix

NULL Pointer Dereference

Improper Locking

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-476CWE-667

Related Identifiers

BDU:2025-15181

CVE-2025-38619

OPENSUSE-SU-2025:20081-1

SUSE-SU-2025:21074-1

SUSE-SU-2025:21139-1

SUSE-SU-2025:21179-1

USN-7879-1

USN-7879-2

USN-7879-3

USN-7879-4

USN-7880-1

USN-7934-1

USN-8028-1

USN-8028-2

USN-8028-3

USN-8028-4

USN-8028-5

USN-8028-6

USN-8028-7

USN-8028-8

USN-8031-1

USN-8031-2

USN-8031-3

USN-8052-1

USN-8052-2

USN-8074-1

USN-8074-2

USN-8126-1

Affected Products

Astra Linux

Linuxmint

Linux Kernel

Red Os

Suse

Ubuntu

CVE-2025-38619

Weakness Enumeration

Related Identifiers

Affected Products

References · 2552