Linux Kernel SUNRPC Null Pointer Dereference Vulnerability

A null pointer dereference vulnerability has been identified in the Linux kernel's SUNRPC implementation. This issue arises when the allocation for the xps sysfs fails, leading to a dereference of a null pointer. The vulnerability was reported by the gssproxy task, indicating a potential flaw in how RPC clients are managed via the sysfs interface.

Impact

Exploitation of this vulnerability leads to a null pointer dereference, causing a kernel panic and potentially allowing for arbitrary code execution in the kernel context.

Reproduction

The vulnerability can be reproduced by creating an RPC client that writes to the gssp_rpc sysfs interface. If the xprt_switch sysfs allocation fails, the vulnerability triggers a null pointer dereference when the system attempts to access the uninitialized 'xps_sysfs' variable.