In the Linux kernel, the following vulnerability has been resolved:
ALSA: usb-audio: Validate UAC3 power domain descriptors, too
UAC3 power domain descriptors need to be verified with its variable
bLength for avoiding the unexpected OOB accesses by malicious
firmware, too.
ALSA: usb-audio: Validate UAC3 power domain descriptors, too
UAC3 power domain descriptors need to be verified with its variable
bLength for avoiding the unexpected OOB accesses by malicious
firmware, too.
Metrics
Affected Vendors & Products
References
History
Fri, 05 Sep 2025 14:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Linux
Linux linux Kernel |
|
Vendors & Products |
Linux
Linux linux Kernel |
Fri, 05 Sep 2025 00:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
References |
| |
Metrics |
threat_severity
|
cvssV3_1
|
Thu, 04 Sep 2025 15:45:00 +0000

Status: PUBLISHED
Assigner: Linux
Published:
Updated: 2025-09-04T15:33:26.896Z
Reserved: 2025-04-16T04:51:24.033Z
Link: CVE-2025-38729

No data.

Status : Awaiting Analysis
Published: 2025-09-04T16:15:43.013
Modified: 2025-09-05T17:47:24.833
Link: CVE-2025-38729


Updated: 2025-09-05T14:02:45Z