Linux Kernel PTP Drivers NULL Pointer Dereference Vulnerability

Vulnerability

A vulnerability in the Linux kernel's Precision Time Protocol (PTP) subsystem can lead to NULL pointer dereferences. This issue arises because the ioctl and sysfs handlers call the ->enable callback without checking if it is implemented by the driver. Affected drivers include ptp_s390.c, ptp_vclock.c, and ptp_mock.c.

Impact

Exploitation of this vulnerability causes a NULL pointer dereference, leading to a crash of the affected kernel component.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel PTP Drivers NULL Pointer Dereference Vulnerability

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating