CVE-2025-38007 – A NULL pointer dereference vulnerability exists... (How to Fix)

Q: What is the severity of CVE-2025-38007?

CVE-2025-38007 has a CVSS score of 5.5 (MEDIUM). A NULL pointer dereference vulnerability exists in the Linux kernel's HID uclogic driver when memory allocation fails. This could cause kernel crashes or denial of service on systems using affected HID devices. The vulnerability affects Linux systems with the uclogic HID driver loaded.

📋 TL;DR

A NULL pointer dereference vulnerability exists in the Linux kernel's HID uclogic driver when memory allocation fails. This could cause kernel crashes or denial of service on systems using affected HID devices. The vulnerability affects Linux systems with the uclogic HID driver loaded.

💻 Affected Systems

Products:

Linux kernel

Versions: Specific kernel versions containing the vulnerable uclogic driver code (check git commits for exact ranges)

Operating Systems: Linux distributions using affected kernel versions

Default Config Vulnerable: ⚠️ Yes

Notes: Only vulnerable when uclogic HID driver is loaded (typically when using compatible graphics tablets or HID devices)

📦 What is this software?

Debian Linux by Debian

View all CVEs affecting Debian Linux →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Kernel panic leading to system crash and denial of service, potentially requiring physical reboot.

🟠

Likely Case

System instability or crash when using specific HID devices under memory pressure conditions.

🟢

If Mitigated

Minor performance impact from additional NULL checks with no security impact when patched.

🌐 Internet-Facing: LOW - Requires local access or specific HID device interaction, not directly network exploitable.

🏢 Internal Only: MEDIUM - Could be exploited by local users or through malicious HID devices to cause denial of service.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: MEDIUM

Requires local access and ability to trigger memory allocation failure or use specific HID devices

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Kernel versions containing commits: 00d52b2fa6083dd0f5c44f3604cd1bad1f9177dc, 01b76cc8ca243fc3376b035aa326bbc4f03d384b, 94e7272b636a0677082e0604609e4c471e0a2caf, a9f58479a1a2c6f72907679c4df2f4ed92b05b39, ad6caaf29bc26a48b1241ce82561fcbcf0a75aa9

Vendor Advisory: https://git.kernel.org/stable/c/00d52b2fa6083dd0f5c44f3604cd1bad1f9177dc

Restart Required: Yes

Instructions:

1. Update Linux kernel to patched version from your distribution's repositories. 2. Reboot system to load new kernel. 3. Verify kernel version after reboot.

🔧 Temporary Workarounds

Disable uclogic driver

linux

Prevent loading of vulnerable uclogic HID driver module

echo 'blacklist hid-uclogic' >> /etc/modprobe.d/blacklist-uclogic.conf
update-initramfs -u
reboot

Memory pressure management

linux

Reduce likelihood of memory allocation failures through system tuning

sysctl -w vm.min_free_kbytes=65536
sysctl -w vm.swappiness=10

🧯 If You Can't Patch

Restrict physical access to prevent malicious HID device connection
Implement strict device control policies to limit HID device usage

🔍 How to Verify

Check if Vulnerable:

Check if uclogic driver is loaded: lsmod | grep uclogic AND check kernel version against affected ranges

Check Version:

uname -r

Verify Fix Applied:

Verify kernel version is updated AND test with compatible HID device under memory pressure

📡 Detection & Monitoring

Log Indicators:

Kernel panic messages
NULL pointer dereference in kernel logs
System crash/reboot events

Network Indicators:

None - local vulnerability only

SIEM Query:

source="kernel" AND ("NULL pointer" OR "panic" OR "Oops") AND "uclogic"

📊 Metadata

CVE ID: CVE-2025-38007

CVSS v3 Score: 5.5 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE: CWE-476

EPSS Score: 0.05% exploit probability (14.3th percentile)

Published: June 18, 2025

Last Updated: February 6, 2026

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-38007, you might also want to check these: