Linux Kernel IIO Light Driver General Protection Fault Vulnerability

Vulnerability

A general protection fault vulnerability has been identified in the Linux kernel's IIO light driver for the ISL29028 sensor. This issue arises in the 'isl29028_remove()' function, where the driver uses the non-managed form of the register function. This mismanagement can lead to a null pointer dereference, causing a crash. The vulnerability is related to the device removal process, where the improper handling of device resources can create instability in the kernel.

Impact

Exploitation of this vulnerability leads to a general protection fault, causing a crash in the kernel. This is likely due to a null pointer dereference, which can create a denial-of-service condition by causing a system crash or instability.

Added: Jun 18, 2025, 1:18 PM

Updated: Jun 18, 2025, 1:18 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.2

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.2

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel IIO Light Driver General Protection Fault Vulnerability

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating