Linux Kernel NULL Pointer Dereference Vulnerability in ASoC Mediatek MT8195

A vulnerability in the Linux kernel's ASoC Mediatek MT8195 component can lead to a NULL pointer dereference. This issue occurs when the device tree does not assign a codec to certain audio links, causing a crash. The problem arises because ETDM1/2 IN/OUT links are not properly initialized when the codec digital audio interface (dai) name is null, leaving the system vulnerable to a crash.

Impact

Exploitation of this vulnerability causes a kernel crash due to a NULL pointer dereference, disrupting system operations and potentially leading to a denial of service.

Reproduction

The vulnerability can be reproduced on a system running the affected Linux kernel version with the Mediatek MT8195 audio component. If the device tree does not assign a codec to the ETDM1/2 IN/OUT links, and these links are left uninitialized, the kernel will crash. This can be observed by monitoring the system logs for a 'NULL pointer dereference' error, which indicates that the vulnerability has been triggered.