Linux Kernel NULL Pointer Dereference Vulnerability in net/smc Component

Vulnerability

A NULL pointer dereference vulnerability has been identified in the Linux kernel's net/smc component. The issue arises in the smc_pnet_find_ib() function, where dev_name() is called with dev.parent as an argument without first checking for a NULL pointer. This oversight can lead to a crash or unintended behavior. The vulnerability has been addressed by adding a NULL check before the dev_name() call.

Impact

Exploitation of this vulnerability can lead to a NULL pointer dereference, causing a system crash or instability.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel NULL Pointer Dereference Vulnerability in net/smc Component

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating