Linux Kernel NULL Pointer Dereference Vulnerability in Device Mapper Suspend Function

A NULL pointer dereference vulnerability has been identified in the Linux kernel's device mapper (DM) subsystem. This issue arises from a race condition between suspending DM devices and loading their associated tables. When the suspend operation is initiated before the table load is complete, it can lead to a NULL pointer dereference, causing a kernel crash. The vulnerability has been observed in Linux kernel version 6.6.0.

Impact

Exploitation of this vulnerability leads to a kernel panic due to a NULL pointer dereference, causing a denial of service by crashing the system.

Reproduction

The vulnerability can be reproduced by manually suspending a DM device before its table has fully loaded. This can be done using the 'dmsetup' command to suspend the device, while simultaneously initiating a table load operation. The race condition will cause the suspend function to dereference a NULL pointer, leading to a crash.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been fixed. Instructions for upgrading the kernel can be found in the official Linux kernel documentation.