Primary

Context

Linux Kernel NULL Pointer Dereference Vulnerability in DRM GUD on USB Disconnect

Vulnerability

Patched

A vulnerability in the Linux kernel's Direct Rendering Manager (DRM) Generic USB Display) component can lead to a NULL pointer dereference. This issue occurs when a USB display is disconnected, as the atomic helper function used to disable all displays sets the framebuffer and the display controller to NULL. The absence of proper checks before accessing these NULL values causes a kernel oops, or crash, every time a display is disconnected. This vulnerability affects Linux kernel versions 6.18.x.

Impact

The vulnerability causes a kernel oops, leading to a system crash, every time a USB display is disconnected.

Remediation

Users can upgrade to the latest version of the Linux kernel to address this vulnerability. The patched version is available in the Linux kernel stable tree.

Added: Jan 31, 2026, 12:19 PM

Updated: Jan 31, 2026, 12:19 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

3.6

remediation

7.7

relevance

2.4

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

3.6

remediation

7.7

relevance

2.4

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel NULL Pointer Dereference Vulnerability in DRM GUD on USB Disconnect

Vulnerability

Impact

Remediation

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating