Linux Kernel NULL Pointer Dereference Vulnerability in ASoC SOF Intel HDA

A NULL pointer dereference vulnerability has been identified in the Linux kernel's ASoC SOF Intel HDA component. This issue arises when there is a mismatch between the DAI links in the machine driver and the audio topology, particularly during loopback capture for echo reference, where a dummy DAI link is used. If the playback or capture widget is not properly set, the system can attempt to dereference a NULL pointer, leading to a crash. The vulnerability has been addressed by modifying the code to return an error when the widget is not set, thereby preventing the NULL pointer dereference.

Impact

Exploitation of this vulnerability can lead to a system crash due to a NULL pointer dereference, causing a denial of service.

Reproduction

The vulnerability can be reproduced by creating a mismatch between the DAI links in the machine driver and the audio topology. This can be done by using a dummy DAI link for loopback capture while omitting the necessary playback or capture widget, which will result in a NULL pointer dereference when the broken topology is processed.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been fixed. Instructions for downloading the patched version are available on the Linux kernel's official website.