Linux Kernel GPIB Driver NULL Dereference Vulnerability After USB Disconnect

Vulnerability

A vulnerability in the Linux kernel's GPIB (General Purpose Interface Bus) staging driver has been fixed. The issue arose when a USB dongle was disconnected, leading to a NULL dereference and causing a system crash. This problem occurred because the bus interface was not properly checked for NULL in all relevant functions, allowing for a NULL dereference when the dongle was removed. The vulnerability affects several versions of the Linux kernel.

Impact

The vulnerability could lead to a system crash due to a NULL dereference, causing a kernel oops.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel GPIB Driver NULL Dereference Vulnerability After USB Disconnect

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating