Volerion logoVolerion
Volerion logoVolerion

Linux Kernel ASoC Intel Driver NULL Pointer Dereference Vulnerability

Vulnerability

A vulnerability in the Linux kernel's ASoC Intel driver for SoundWire (sof_sdw) can lead to a NULL pointer dereference. This issue occurs in the 'create_sdw_dailink' function, where the code fails to verify that the 'add_sidecar' callback is not NULL before invoking it. The original implementation assumed that if 'include_sidecar' was true, the corresponding codec would have an 'add_sidecar' callback. However, other codecs on the same link might lack this callback, potentially causing a crash.

Impact

Exploitation of this vulnerability can lead to a NULL pointer dereference, causing a system crash.

Reproduction

To reproduce this vulnerability, load a SoundWire link with a codec that does not provide an 'add_sidecar' callback while 'include_sidecar' is enabled. This will trigger the NULL pointer dereference in the 'create_sdw_dailink' function of the ASoC Intel driver.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been addressed.

Added: Nov 12, 2025, 11:59 AM
Updated: Nov 12, 2025, 5:34 PM

Vulnerability Rating

Custom Algorithm
spread
9.0
impact
2.5
exploitability
4.3
remediation
7.7
relevance
1.0
threat
4.8
urgency
2.9
incentive
1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.