Linux Kernel USB Chipidea ci_hdrc_imx NULL Pointer Dereference Vulnerability

Vulnerability

A vulnerability in the Linux kernel's USB Chipidea driver for the ci_hdrc_imx platform allows for a NULL pointer dereference. This issue arises because the usbmisc property is optional, and the driver does not properly check for NULL values before accessing the corresponding data. The vulnerability was identified by the Linux Verification Center using the Svace static analysis tool.

Impact

Exploitation of this vulnerability leads to a NULL pointer dereference, causing a kernel crash.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel USB Chipidea ci_hdrc_imx NULL Pointer Dereference Vulnerability

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating