ELS for OS
- CVEs
- Releases
- Projects
- Documentation
Live Patches
ELS for PHP
- CVEs
- Releases
- Projects
- Documentation
ELS for Python
- CVEs
- Releases
- Projects
- Documentation
ELS for Dotnet
- CVEs
- Releases
- Projects
- Documentation
ELS for Node.js
- CVEs
- Releases
- Projects
- Documentation

CVE-2025-40154

Updated: 2025-11-24 09:12:39.777721

Description:

In the Linux kernel, the following vulnerability has been resolved: ASoC: Intel: bytcr_rt5640: Fix invalid quirk input mapping When an invalid value is passed via quirk option, currently bytcr_rt5640 driver only shows an error message but leaves as is. This may lead to unepxected results like OOB access. This patch corrects the input mapping to the certain default value if an invalid value is passed.

Links	NIST	CIRCL	RHEL	Ubuntu

Severity

	Severity	Score
CVSS Version 2.x	NONE	0.0
CVSS Version 3.x	HIGH	7.0

Status

OS name	Project name	Version	Score	Severity	Status	Errata	Last updated
AlmaLinux 9.2 ESU	kernel	5.14.0	7.0	HIGH	In Testing		2026-02-03 15:36:56
CentOS 8.4 ELS	kernel	4.18.0	7.0	HIGH	Needs Triage		2026-01-26 13:15:11
CentOS 8.5 ELS	kernel	4.18.0	7.0	HIGH	Needs Triage		2026-01-26 13:15:09
CentOS Stream 8 ELS	kernel	4.18.0	7.0	HIGH	Released	CLSA-2026:1770032032	2026-02-02 15:00:42
Oracle Linux 7 ELS	kernel-uek	5.4.17	7.0	HIGH	Released	CLSA-2025:1764085382	2025-11-25 20:36:15
TuxCare 9.6 ESU	kernel	5.14.0	7.0	HIGH	In Progress		2026-02-05 12:35:08