CVE-2025-71291
Null-pointer Dereference in Linux Kernel BCM VK Driver
Publication date: 2026-05-06
Last updated on: 2026-05-06
Assigner: kernel.org
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| linux | linux_kernel | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-UNKNOWN |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability exists in the Linux kernel's bcm_vk driver, specifically in the bcm_vk_read() function. The issue arises because the code attempts to access data through a pointer named 'entry' without properly ensuring it is not NULL. If 'entry' is NULL and a certain error code (-EMSGSIZE) is set, the code still tries to dereference 'entry', leading to possible null-pointer dereferences. This can cause the kernel to behave unexpectedly or crash. The fix involves copying necessary data from 'entry' into temporary variables before returning them, avoiding direct access through a potentially NULL pointer.
How can this vulnerability impact me? :
This vulnerability can lead to null-pointer dereferences in the Linux kernel, which may cause system instability, crashes, or denial of service. If exploited, it could disrupt normal operation of the system running the affected kernel, potentially impacting availability.