Linux Kernel ACPICA NULL Pointer Dereference Vulnerability in Address Space Dispatch

A NULL pointer dereference vulnerability has been identified in the Linux kernel's ACPICA component, specifically within the 'acpi_ev_address_space_dispatch' function. This issue arises from a missed execution path that could lead to a crash by dereferencing a NULL pointer. The vulnerability affects several versions of the Linux kernel.

Impact

Exploitation of this vulnerability leads to a NULL pointer dereference, causing a crash of the kernel and potentially disrupting system operations.

Reproduction

The vulnerability can be reproduced by invoking the 'acpi_ev_address_space_dispatch' function with a 'region_obj' that has a 'space_id' set to 'ACPI_ADR_SPACE_PLATFORM_COMM', but without the appropriate 'field_obj' context. This can be done by creating a custom ACPI operation region that triggers the dispatch function without the necessary context, leading to the NULL pointer dereference.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been patched. Instructions for upgrading the kernel can be found in the official Linux kernel documentation.