Linux Kernel Adreno GPU Null Pointer Dereference Vulnerability

A null pointer dereference vulnerability has been identified in the Linux kernel's Adreno GPU driver, specifically within the Direct Rendering Manager (DRM) for the Qualcomm Snapdragon Mobile Series. This vulnerability leads to a kernel panic, causing a denial of service. The issue arises in the 'adreno_gpu_cleanup' function, where a null pointer is accessed, triggering a fatal exception and a memory abort due to an invalid memory reference.

Impact

Exploitation of this vulnerability causes a kernel panic, disrupting system operations and potentially leading to a denial of service.

Reproduction

The vulnerability can be reproduced by initializing an Adreno GPU component in the DRM subsystem and then invoking the cleanup process. The 'adreno_gpu_cleanup' function will attempt to access the GPU's device private data, which can be null, leading to a crash when the cleanup process is executed.

Remediation

Users can upgrade to the patched version of the Linux kernel available in the official Linux Kernel Git Repository.