Linux Kernel Privileged Command NULL Pointer Dereference Vulnerability

Vulnerability

A vulnerability in the Linux kernel's handling of privileged command operations can lead to a NULL pointer dereference. This issue arises in the privcmd_ioctl_dm_op() function, where unlock_pages() may be called with NULL pages, causing a NULL dereference. Additionally, the lock_pages() function does not fully verify the success of pin_user_pages_fast(), potentially leading to incomplete locking of pages in memory. Such discrepancies could cause intermittent failures when the associated memory is accessed in user mode. The vulnerability affects several versions of the Linux kernel.

Impact

Exploitation of this vulnerability can lead to a NULL pointer dereference, causing a crash or undefined behavior in the kernel.

Added: Jun 18, 2025, 8:57 PM

Updated: Jun 18, 2025, 8:57 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.2

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.2

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Privileged Command NULL Pointer Dereference Vulnerability

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating