Linux Kernel NULL Pointer Dereference Vulnerability in iwlwifi Component

Vulnerability

A vulnerability allowing a NULL pointer dereference has been identified in the Linux kernel's iwlwifi component. This issue arises when iterating over the links of a virtual interface (vif), as the process does not always ensure the validity of the pointer before dereferencing it. The vulnerability has been addressed by using a function that verifies the existence of the link before proceeding, thus preventing the potential dereference of a NULL pointer.

Impact

Exploitation of this vulnerability could lead to a system crash or undefined behavior, commonly associated with NULL pointer dereference issues.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel NULL Pointer Dereference Vulnerability in iwlwifi Component

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating