Volerion logoVolerion
Volerion logoVolerion

Linux Kernel HID Steam Driver NULL Pointer Dereference Vulnerability

Vulnerability

A vulnerability in the Linux kernel's HID Steam driver allows for a NULL pointer dereference. This issue arises because the driver does not properly validate the 'struct hid_report' pointer from HID devices before use. A malicious device can exploit this by omitting a Feature Report, leading to a dereference of an invalid pointer. The vulnerability affects several versions of the Linux kernel.

Impact

Exploitation of this vulnerability can lead to a NULL pointer dereference, causing a crash or undefined behavior in the kernel.

Reproduction

The vulnerability can be reproduced by using a malicious HID device that fails to send a Feature Report when expected. The HID Steam driver will then attempt to read the report without checking if it was properly received, leading to a NULL pointer dereference.

Remediation

Users can upgrade to the patched version of the Linux kernel where this vulnerability has been addressed.

Added: Sep 1, 2025, 7:22 PM
Updated: Sep 1, 2025, 7:22 PM

Vulnerability Rating

Custom Algorithm
spread
9.0
impact
2.5
exploitability
4.3
remediation
7.7
relevance
0.2
threat
4.8
urgency
2.9
incentive
1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.