Linux Kernel USB Serial Quatech2 Null Pointer Dereference Vulnerability

Vulnerability

A null pointer dereference vulnerability has been fixed in the Linux kernel's USB serial Quatech2 driver. The issue arose in the function 'qt2_process_read_urb()' due to an improper bounds check. The original condition failed to consider the valid range of the 'serial->port' buffer, leading to an out-of-bounds access when 'newport' equaled 'serial->num_ports'. This out-of-bounds access caused the 'port' variable to be assigned a NULL value, creating the potential for a null pointer dereference.

Impact

Exploitation of this vulnerability could lead to a null pointer dereference, causing a crash or undefined behavior in the kernel.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel USB Serial Quatech2 Null Pointer Dereference Vulnerability

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating