Linux Kernel NULL Pointer Dereference Vulnerability in netfs Cache Invalidation

Vulnerability

A vulnerability in the Linux kernel's netfs component can lead to a NULL pointer dereference, causing a kernel crash. This issue arises in certain filesystems like NFS and Ceph, which do not implement the 'invalidate_cache' method. When writing to the cache fails, the absence of this method can trigger a crash by attempting to access a NULL pointer. The vulnerability has been addressed by adding a necessary NULL check before calling 'invalidate_cache'.

Impact

Exploitation of this vulnerability leads to a kernel crash due to a NULL pointer dereference.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel NULL Pointer Dereference Vulnerability in netfs Cache Invalidation

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating