Volerion logoVolerion
Volerion logoVolerion

Linux Kernel NULL Pointer Dereference Vulnerability in Generic Hwtstamp Ioctl Lower Function

Vulnerability

A null pointer dereference vulnerability has been identified in the Linux kernel's generic_hwtstamp_ioctl_lower() function. This issue arises when the ethtool tsconfig Netlink path is used, leading to a system crash. The vulnerability occurs because the function is called with a NULL ifr, which the function does not expect and subsequently dereferences. The vulnerability affects the Linux kernel stable tree.

Impact

Exploitation of this vulnerability leads to a system crash due to a null pointer dereference.

Reproduction

The vulnerability can be reproduced by sending an ethtool tsconfig Netlink message that triggers the generic_hwtstamp_ioctl_lower() function. This call will be made with a NULL ifr, causing the function to dereference the NULL pointer and crash the system.

Remediation

Users can apply the latest patches available in the Linux kernel stable tree to address this vulnerability.

Added: Dec 4, 2025, 4:35 PM
Updated: Dec 4, 2025, 5:35 PM

Vulnerability Rating

Custom Algorithm
spread
9.0
impact
2.5
exploitability
4.3
remediation
7.7
relevance
1.3
threat
4.8
urgency
2.9
incentive
1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.