Primary

Context

Linux Kernel Venus Driver Spurious Interrupt Handling Vulnerability

Vulnerability

Patched

A vulnerability in the Linux kernel's Venus media driver can lead to a NULL dereference. This issue occurs if an interrupt is registered before the handler is fully set up, allowing an interrupt to be processed prematurely. This flaw has been observed during system boot on Rb3Gen2.

Impact

The vulnerability can cause a NULL pointer dereference, leading to a system crash.

Reproduction

The vulnerability can be reproduced by loading the Venus media driver in a scenario where the interrupt is registered before the handler is properly initialized. This can happen during the system boot process on affected devices.

Remediation

Users can apply the latest patches available in the Linux kernel stable tree to address this vulnerability.

Added: Sep 5, 2025, 7:33 PM

Updated: Sep 5, 2025, 7:33 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

3.9

remediation

7.7

relevance

0.5

threat

4.8

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

3.9

remediation

7.7

relevance

0.5

threat

4.8

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Venus Driver Spurious Interrupt Handling Vulnerability

Vulnerability

Impact

Reproduction

Remediation

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating