Primary

Context

Linux Kernel NULL Pointer Dereference Vulnerability in HID AppleIR Driver

Vulnerability

A NULL pointer dereference vulnerability has been identified in the Linux kernel's HID AppleIR driver. This issue arises when the driver processes malformed report items from an emulated device, leading to a report with no fields being added to the report list. Consequently, the event callback is invoked without an associated input device, causing a NULL pointer dereference in the input_event function. The vulnerability affects Linux kernel versions through 6.13.0-rc4.

Impact

Exploitation of this vulnerability leads to a NULL pointer dereference, causing a kernel crash.

Reproduction

The vulnerability can be reproduced by using the HID AppleIR driver with an emulated device that sends malformed report items, creating a report without fields. This triggers the event callback without a corresponding input device, resulting in a NULL pointer dereference.

Remediation

Users can upgrade to the latest stable version of the Linux kernel, where this vulnerability has been addressed.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.7

remediation

0.0

relevance

0.0

threat

4.8

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.7

remediation

0.0

relevance

0.0

threat

4.8

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel NULL Pointer Dereference Vulnerability in HID AppleIR Driver

Vulnerability

Impact

Reproduction

Remediation

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating