Linux Kernel NULL Pointer Dereference Vulnerability in ASoC SoundWire Utilities

A vulnerability in the Linux kernel's ASoC SoundWire utilities can lead to a NULL pointer dereference. This issue arises because the function 'devm_kasprintf()' can return NULL if memory allocation fails. The vulnerability occurs in the file 'acp-sdw-sof-mach.c', where 'devm_kasprintf()' is called to allocate a string for the DAI name before checking if the allocation was successful. If the allocation fails, the subsequent debug message that prints the DAI name can cause a NULL pointer dereference. This vulnerability affects the Linux kernel stable tree.

Impact

Exploitation of this vulnerability can lead to a NULL pointer dereference, causing a crash or undefined behavior in the kernel.

Reproduction

The vulnerability can be reproduced by loading a SoundWire generic machine driver that uses the ASoC framework. The driver will attempt to allocate a string for the DAI name using 'devm_kasprintf()'. If the memory allocation fails, the driver will still try to print the DAI name, leading to a NULL pointer dereference.

Remediation

The vulnerability has been addressed in the Linux kernel. Users can upgrade to the latest version to apply the fix.