PT-2025-40633 · Linux+6 · Linux Kernel+6

Published

2025-09-17

·

Updated

2026-05-26

·

CVE-2025-39937

CVSS v3.1

5.5

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description A flaw exists in the Linux kernel’s net/rfkill/gpio subsystem where an uninitialized pointer can lead to a crash. This issue arises from the rfkill find type() function being called with an uninitialized type name variable after a failure in device property read string(). This can occur on x86 systems when rfkill-gpio binds to a "BCM4752" or "LNV4752" acpi device, as the rfkill->type is set based on the ACPI acpi device id and no "type" property exists. The fix initializes type name to NULL, preventing the crash. It is noted that this issue may not have been widely observed due to the limited number of x86 machines with the affected acpi device.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

NULL Pointer Dereference

Access of Uninitialized Pointer

Weakness Enumeration

CWE-476CWE-824

Related Identifiers

AZL-68150
AZL-75333
BDU:2026-02680
CVE-2025-39937
DLA-4379-1
DLA-4404-1
DSA-6053-1
ECHO-4FDA-4F38-7453
MGASA-2025-0309
MGASA-2025-0310
OESA-2026-2417
OESA-2026-2418
OPENSUSE-SU-2025:20081-1
SUSE-SU-2025:21040-1
SUSE-SU-2025:21052-1
SUSE-SU-2025:21056-1
SUSE-SU-2025:21064-1
SUSE-SU-2025:21074-1
SUSE-SU-2025:21139-1
SUSE-SU-2025:21179-1
SUSE-SU-2025:4057-1
SUSE-SU-2025:4128-1
SUSE-SU-2025:4132-1
SUSE-SU-2025:4140-1
SUSE-SU-2025:4141-1
SUSE-SU-2025:4301-1
USN-8033-1
USN-8033-2
USN-8033-3
USN-8033-4
USN-8033-5
USN-8033-6
USN-8033-7
USN-8033-8
USN-8034-1
USN-8034-2
USN-8095-1
USN-8095-2
USN-8095-3
USN-8095-4
USN-8095-5
USN-8100-1
USN-8125-1
USN-8126-1
USN-8141-1
USN-8163-1
USN-8163-2
USN-8165-1
USN-8243-1
USN-8261-1

Affected Products

Bcm4752
Debian
Lnv4752
Linuxmint
Linux Kernel
Suse
Ubuntu