CVE-2025-38235Linux vulnerability

5 documents5 sources
Severity
5.5MEDIUMNVD
EPSS
0.0%
top 92.33%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
LinuxLinux KernelDebian Linux
Timeline
PublishedJul 6

Description

In the Linux kernel, the following vulnerability has been resolved: HID: appletb-kbd: fix "appletb_backlight" backlight device reference counting During appletb_kbd_probe, probe attempts to get the backlight device by name. When this happens backlight_device_get_by_name looks for a device in the backlight class which has name "appletb_backlight" and upon finding a match it increments the reference count for the device and returns it to the caller. However this reference is never released leadi

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages3 packages

NVDlinux/linux_kernel6.156.15.5+1
CVEListV5linux/linux93a0fc48948107e0cc34e1de22c3cb363a8f2783751d5437112a3f387de4ef6d2d1c131068ff7627+2
debiandebian/linux

Patches

Patch: git.kernel.orgPatch: git.kernel.org

🔴Vulnerability Details

2
OSV
CVE-2025-38235: In the Linux kernel, the following vulnerability has been resolved: HID: appletb-kbd: fix "appletb_backlight" backlight device reference counting Duri2025-07-06
GHSA
GHSA-xfhg-wvc5-5xpc: In the Linux kernel, the following vulnerability has been resolved: HID: appletb-kbd: fix "appletb_backlight" backlight device reference counting Du2025-07-06

📋Vendor Advisories

2
Red Hat
kernel: HID: appletb-kbd: fix "appletb_backlight" backlight device reference counting2025-07-06
Debian
CVE-2025-38235: linux - In the Linux kernel, the following vulnerability has been resolved: HID: applet...2025
CVE-2025-38235 — Linux vulnerability | cvebase