Primary

Context

Linux Kernel NULL Pointer Dereference Vulnerability in Meson Firmware Driver

Vulnerability

Patched

A vulnerability in the Linux kernel's handling of the Meson firmware driver can lead to a NULL pointer dereference. This issue arises because the function 'of_match_device()' may fail and return a NULL pointer. The vulnerability is present in the stable versions of the Linux kernel.

Impact

The vulnerability can cause a NULL pointer dereference, which typically leads to a system crash or instability.

Reproduction

The vulnerability can be reproduced by loading the Meson firmware driver on a device where the 'of_match_device()' function fails, returning a NULL pointer. This can occur in certain hardware or configuration scenarios where the device tree does not properly match the expected identifiers.

Remediation

Users can apply the latest patches available in the Linux kernel stable tree to address this vulnerability.

Added: Dec 30, 2025, 2:09 PM

Updated: Dec 30, 2025, 2:09 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.3

remediation

7.7

relevance

1.8

threat

4.8

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.3

remediation

7.7

relevance

1.8

threat

4.8

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel NULL Pointer Dereference Vulnerability in Meson Firmware Driver

Vulnerability

Impact

Reproduction

Remediation

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating