Linux Kernel IB/hfi1 NULL Pointer Dereference Vulnerability Leading to Kernel Crash

Vulnerability

A vulnerability in the Linux kernel's IB/hfi1 subsystem can cause a kernel crash due to a NULL pointer dereference. This issue arises when a link goes down while there are pending send operations, leading to a crash as the system tries to move a list incorrectly between heads. The improper list handling, related to an 'abba' locking issue, triggers a kernel panic by attempting to access a NULL address, causing a denial of service.

Impact

Exploiting this vulnerability leads to a kernel crash, causing a denial of service by interrupting normal system operations and potentially requiring a manual reboot to restore functionality.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel IB/hfi1 NULL Pointer Dereference Vulnerability Leading to Kernel Crash

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating