Linux Kernel CXL Feature NULL Pointer Dereference Vulnerability

A NULL pointer dereference vulnerability has been identified in the Linux kernel's CXL (Compute Express Link) feature handling. This issue arises when the CXL feature information is requested from hardware that does not support CXL features, leading to a NULL pointer being passed and subsequently dereferenced. The vulnerability has been addressed by adding a check to ensure that the CXL feature state is valid before accessing it, preventing the dereference of a NULL pointer.

Impact

Exploitation of this vulnerability leads to a kernel NULL pointer dereference, causing a crash by accessing a non-existent memory address. This type of error can create a denial-of-service condition by causing a system crash or instability.

Reproduction

The vulnerability can be reproduced by invoking the CXL feature information retrieval process on hardware that lacks CXL feature support. This will result in a NULL pointer being passed and dereferenced, causing a kernel crash.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been fixed. Instructions for downloading the patched version are available in the Linux kernel documentation.