Primary

Context

Linux Kernel ACPICA Namespace Traversal Vulnerability on Honor Magicbook 14 Pro

Vulnerability

Patched

A vulnerability in the Linux kernel's ACPICA component can lead to a NULL pointer dereference when traversing the ACPI namespace. This issue occurs on the Honor Magicbook 14 Pro due to a flaw in how the namespace traversal handles NULL start nodes, particularly when accessing parent node members. Despite previous fixes, the mainline kernel still crashes on this device. The problematic DSDT table can be found on GitHub.

Impact

Exploitation of this vulnerability causes a kernel crash due to a NULL pointer dereference.

Reproduction

The vulnerability can be reproduced by loading the affected DSDT table on an Honor Magicbook 14 Pro running the Linux kernel. The ACPI namespace traversal will attempt to access a NULL pointer, leading to a crash.

Remediation

Users can apply the latest patch available in the Linux kernel stable tree to address this vulnerability.

Added: Jan 14, 2026, 3:45 PM

Updated: Jan 14, 2026, 4:53 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

3.8

remediation

7.7

relevance

2.0

threat

4.8

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

3.8

remediation

7.7

relevance

2.0

threat

4.8

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel ACPICA Namespace Traversal Vulnerability on Honor Magicbook 14 Pro

Vulnerability

Impact

Reproduction

Remediation

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating