Linux Kernel Ice Driver Virtual Function VSI Pointer Null Pointer Dereference Vulnerability

Vulnerability

A vulnerability in the Linux kernel's ice driver has been addressed, which involved a potential null pointer dereference. The issue arose in the function ice_vc_add_fdir_fltr(), where the return value of ice_get_vf_vsi() was not properly checked before being used. This oversight could lead to a null pointer dereference, causing a crash or undefined behavior.

Impact

Exploitation of this vulnerability could lead to a null pointer dereference, causing a crash or undefined behavior in the kernel.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Ice Driver Virtual Function VSI Pointer Null Pointer Dereference Vulnerability

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating