Volerion logoVolerion
Volerion logoVolerion

Linux Kernel Lontium LT9611 GPU NULL Pointer Dereference Vulnerability

Vulnerability

A NULL pointer dereference vulnerability has been identified in the Linux kernel's GPU bridge driver for the Lontium LT9611. This issue arises in the 'lt9611_connector_init' function, where the 'bridge->encoder' pointer is checked for NULL. However, it has already been dereferenced on all paths leading to the check, creating a potential for a NULL pointer dereference.

Impact

Exploitation of this vulnerability leads to a NULL pointer dereference, which can cause a system crash or instability.

Reproduction

The vulnerability can be reproduced by initializing a connector for the Lontium LT9611 GPU bridge without a valid encoder. The 'lt9611_connector_init' function will then attempt to attach the encoder to the connector, resulting in a NULL pointer dereference if the encoder is not properly set.

Remediation

Users can upgrade to the patched version of the Linux kernel available in the Linux Kernel Archive.

Added: Dec 30, 2025, 4:48 PM
Updated: Dec 30, 2025, 4:48 PM

Vulnerability Rating

Custom Algorithm
spread
9.0
impact
2.5
exploitability
4.3
remediation
7.7
relevance
1.8
threat
4.8
urgency
2.9
incentive
1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.