Primary

Context

Linux Kernel NULL Pointer Dereference Vulnerability in ASoC SDCA Component

Vulnerability

Patched

A vulnerability in the Linux kernel's ASoC SDCA component allows for a NULL pointer dereference. The issue arises in the 'find_sdca_entity_iot()' function, which allocates a string for the entity name without verifying if the allocation was successful. This oversight can lead to a NULL pointer dereference, causing a potential denial-of-service condition.

Impact

Exploitation of this vulnerability leads to a NULL pointer dereference, causing a denial-of-service condition by crashing the system or application.

Remediation

Users can apply the latest patches from the Linux kernel stable tree to address this vulnerability.

Added: Mar 25, 2026, 1:07 PM

Updated: Mar 25, 2026, 1:07 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

3.5

remediation

7.7

relevance

4.7

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

3.5

remediation

7.7

relevance

4.7

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel NULL Pointer Dereference Vulnerability in ASoC SDCA Component

Vulnerability

Impact

Remediation

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating