Primary

Context

Linux Kernel Clock Parent Map NULL Pointer Dereference Vulnerability

Vulnerability

A vulnerability in the Linux kernel's clock management for Qualcomm devices can lead to a NULL pointer dereference. This issue occurs in the dispcc-sm6350 component when a clk_rcg2 clock has a parent but lacks a defined parent_map. The missing parent_map can cause a NULL pointer dereference during operations that set the clock rate, potentially leading to a system crash.

Impact

Exploitation of this vulnerability causes a NULL pointer dereference, which can lead to a system crash.

Remediation

The vulnerability has been addressed by adding the missing parent_map property for the affected clock. Users should ensure they are using a version of the Linux kernel that includes this fix.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Clock Parent Map NULL Pointer Dereference Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating