Linux Kernel NULL Pointer Dereference Vulnerability in SFC Driver

Vulnerability

A vulnerability in the Linux kernel's SFC (Solarflare) network driver has been addressed, which involved NULL pointer dereferences in the function 'ef100_process_design_param'. The issue arose because the probe functions 'ef100_probe_main' and 'ef100_check_design_params' were executed before the network device was fully created. This timing issue prevented the driver from correctly setting the TCP segmentation offload parameters. The vulnerability has been resolved by moving the network device configuration to a later stage in the probe process, ensuring that the necessary device context is available.

Impact

Exploitation of this vulnerability could lead to NULL pointer dereferences, causing kernel crashes or undefined behavior.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel NULL Pointer Dereference Vulnerability in SFC Driver

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating