Linux Kernel ipw2x00 NULL Dereference Vulnerability

Vulnerability

A potential NULL pointer dereference vulnerability has been identified in the Linux kernel's ipw2x00 wireless driver. The issue arises in the libipw_xmit() function, where the 'crypt' pointer and its 'ops' member could be NULL. This flaw necessitates a null check before dereferencing to prevent a crash.

Impact

Exploitation of this vulnerability could lead to a system crash or undefined behavior due to the NULL dereference.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel ipw2x00 NULL Dereference Vulnerability

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating