Linux Kernel NULL Pointer Dereference Vulnerability in DRM Bridge ANX7625 Component

A NULL pointer dereference vulnerability has been identified in the Linux kernel's DRM bridge component, specifically within the ANX7625 driver. This issue arises when an interrupt occurs before the necessary resource initialization is completed. In such cases, the interrupt handler may attempt to access uninitialized data, including the I2C tcpc_client device. This uninitialized access can lead to a NULL pointer dereference, causing potential instability or crashes in the system.

Impact

Exploitation of this vulnerability can lead to a system crash or instability due to a NULL pointer dereference.

Reproduction

The vulnerability can be reproduced by triggering an interrupt before the resource initialization for the ANX7625 bridge component is complete. This can be done by manipulating the interrupt timing in a way that it occurs prematurely, before the I2C client device has been fully initialized. Once the interrupt handler accesses the uninitialized data, the NULL pointer dereference will occur, causing a crash or instability in the system.

Remediation

Users can apply the latest patches available in the Linux kernel stable tree to address this vulnerability. The specific commits that fix this issue can be downloaded as part of the Linux kernel source.