Linux Kernel NULL Pointer Dereference Vulnerability in ARM DaVinci DA850 EVM

Vulnerability

A NULL pointer dereference vulnerability has been identified in the Linux kernel's ARM DaVinci DA850 EVM configuration. This issue arises when booting the multi_v5_defconfig in QEMU under the palmetto-bmc machine, leading to a kernel panic. The problem occurs in the 'da850_evm_config_emac()' function, where the 'emac_pdata' pointer is NULL. This pointer is only populated on DaVinci machines, but the function is called on all machines during the device initialization process. As a result, the system encounters a NULL pointer dereference at a specific virtual address, causing an internal error.

Impact

Exploitation of this vulnerability leads to a kernel panic due to a NULL pointer dereference, causing a denial of service by crashing the kernel.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel NULL Pointer Dereference Vulnerability in ARM DaVinci DA850 EVM

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating