Linux Kernel NULL Pointer Dereference Vulnerability in Filemap Handling

Vulnerability

A vulnerability in the Linux kernel's filemap component can lead to a NULL pointer dereference. This issue arises when a read operation races with an invalidation, followed by another read, allowing a folio to be replaced with a higher-order folio. Consequently, a sibling entry for the new folio may appear in the next iteration of the processing loop, causing the NULL pointer dereference while holding the RCU read lock. The vulnerability has been addressed by modifying the read handling to correctly process the new folio in such race conditions.

Impact

Exploitation of this vulnerability leads to a NULL pointer dereference, causing a crash or denial-of-service condition on the affected system.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel NULL Pointer Dereference Vulnerability in Filemap Handling

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating