Linux Kernel Null Pointer Dereference Vulnerability in DMI Sysfs Handling

A null pointer dereference vulnerability has been identified in the Linux kernel's DMI sysfs handling. This issue arises in the 'dmi_sysfs_register_handle' function, where improper error handling allows a null pointer to be dereferenced, leading to a kernel panic. The vulnerability was introduced by a previous patch that added memory management calls without correctly sequencing them, leaving a list head uninitialized and vulnerable to corruption. The issue affects the Linux kernel stable tree.

Impact

Exploitation of this vulnerability causes a kernel panic, halting the system due to a fatal exception. This behavior indicates a critical failure in the kernel's operation, potentially leading to a denial of service by causing the system to become unresponsive or to crash.

Reproduction

The vulnerability can be reproduced by loading a module that interacts with the DMI sysfs interface, such as 'modprobe', on a system running the affected version of the Linux kernel. The Kernel Address Sanitizer (KASAN) will report the null pointer dereference error, indicating that the vulnerability has been successfully triggered.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been fixed. Instructions for upgrading the kernel can be found in the documentation for the specific Linux distribution in use.