CVE-2026-23237
Received Received - Intake
NULL Pointer Dereference in Linux Classmate Laptop Driver

Publication date: 2026-03-04

Last updated on: 2026-03-17

Assigner: kernel.org

Description
In the Linux kernel, the following vulnerability has been resolved: platform/x86: classmate-laptop: Add missing NULL pointer checks In a few places in the Classmate laptop driver, code using the accel object may run before that object's address is stored in the driver data of the input device using it. For example, cmpc_accel_sensitivity_store_v4() is the "show" method of cmpc_accel_sensitivity_attr_v4 which is added in cmpc_accel_add_v4(), before calling dev_set_drvdata() for inputdev->dev. If the sysfs attribute is accessed prematurely, the dev_get_drvdata(&inputdev->dev) call in in cmpc_accel_sensitivity_store_v4() returns NULL which leads to a NULL pointer dereference going forward. Moreover, sysfs attributes using the input device are added before initializing that device by cmpc_add_acpi_notify_device() and if one of them is accessed before running that function, a NULL pointer dereference will occur. For example, cmpc_accel_sensitivity_attr_v4 is added before calling cmpc_add_acpi_notify_device() and if it is read prematurely, the dev_get_drvdata(&acpi->dev) call in cmpc_accel_sensitivity_show_v4() returns NULL which leads to a NULL pointer dereference going forward. Fix this by adding NULL pointer checks in all of the relevant places.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-03-04
Last Modified
2026-03-17
Generated
2026-05-06
AI Q&A
2026-03-04
EPSS Evaluated
2026-05-05
NVD
CVE-2026-23237
EUVD
EUVD-2026-9409
Affected Vendors & Products
Showing 22 associated CPEs
Vendor Product Version / Range
linux linux_kernel 2.6.33
linux linux_kernel 2.6.33
linux linux_kernel 2.6.33
linux linux_kernel 2.6.33
linux linux_kernel 2.6.33
linux linux_kernel 2.6.33
linux linux_kernel 2.6.33
linux linux_kernel 2.6.33
linux linux_kernel 6.19
linux linux_kernel 6.19
linux linux_kernel 6.19
linux linux_kernel 6.19
linux linux_kernel 6.19
linux linux_kernel From 5.16 (inc) to 6.1.164 (exc)
linux linux_kernel 6.19
linux linux_kernel 6.19
linux linux_kernel 6.19
linux linux_kernel From 5.11 (inc) to 5.15.201 (exc)
linux linux_kernel From 6.2 (inc) to 6.6.127 (exc)
linux linux_kernel From 6.7 (inc) to 6.12.74 (exc)
linux linux_kernel From 6.13 (inc) to 6.18.13 (exc)
linux linux_kernel From 2.6.33.1 (inc) to 5.10.251 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-476 The product dereferences a pointer that it expects to be valid but is NULL.
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?

This vulnerability exists in the Linux kernel's Classmate laptop driver for the x86 platform. The issue arises because certain code uses an 'accel' object before its address is properly stored in the driver's input device data. Specifically, sysfs attributes related to the input device are accessed before the device is fully initialized, causing functions like cmpc_accel_sensitivity_store_v4() and cmpc_accel_sensitivity_show_v4() to attempt to dereference a NULL pointer. This leads to a NULL pointer dereference error. The vulnerability was fixed by adding NULL pointer checks in all relevant places to prevent this premature access.


How can this vulnerability impact me? :

This vulnerability can cause a NULL pointer dereference in the Linux kernel driver, which may lead to a kernel crash or system instability if the affected sysfs attributes are accessed prematurely. This could result in denial of service or unexpected behavior on systems using the Classmate laptop driver.


How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:

I don't know


How can this vulnerability be detected on my network or system? Can you suggest some commands?

I don't know


What immediate steps should I take to mitigate this vulnerability?

I don't know


Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70
EPSS Chart