Home

Description

In the Linux kernel, the following vulnerability has been resolved: char: applicom: fix NULL pointer dereference in ac_ioctl Discovered by Atuin - Automated Vulnerability Discovery Engine. In ac_ioctl, the validation of IndexCard and the check for a valid RamIO pointer are skipped when cmd is 6. However, the function unconditionally executes readb(apbs[IndexCard].RamIO + VERS) at the end. If cmd is 6, IndexCard may reference a board that does not exist (where RamIO is NULL), leading to a NULL pointer dereference. Fix this by skipping the readb access when cmd is 6, as this command is a global information query and does not target a specific board context.

PUBLISHED Reserved 2025-12-24 | Published 2026-01-13 | Updated 2026-02-09 | Assigner Linux

Product status

Default status
unaffected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 (git) before 5a6240804fb7bbd4f5f6e706955248a6f4c1abbc
affected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 (git) before d1b0452280029d05a98c75631131ee61c0b0d084
affected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 (git) before 0b8b353e09888bccee405e0dd6feafb60360f478
affected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 (git) before d285517429a75423789e6408653e57b6fdfc8e54
affected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 (git) before 74883565c621eec6cd2e35fe6d27454cf2810c23
affected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 (git) before f83e3e9f89181b42f6076a115d767a7552c4a39e
affected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 (git) before 82d12088c297fa1cef670e1718b3d24f414c23f7
affected

Default status
affected

2.6.12
affected

Any version before 2.6.12
unaffected

5.10.248 (semver)
unaffected

5.15.198 (semver)
unaffected

6.1.160 (semver)
unaffected

6.6.120 (semver)
unaffected

6.12.64 (semver)
unaffected

6.18.3 (semver)
unaffected

6.19 (original_commit_for_fix)
unaffected

References

git.kernel.org/...c/5a6240804fb7bbd4f5f6e706955248a6f4c1abbc

git.kernel.org/...c/d1b0452280029d05a98c75631131ee61c0b0d084

git.kernel.org/...c/0b8b353e09888bccee405e0dd6feafb60360f478

git.kernel.org/...c/d285517429a75423789e6408653e57b6fdfc8e54

git.kernel.org/...c/74883565c621eec6cd2e35fe6d27454cf2810c23

git.kernel.org/...c/f83e3e9f89181b42f6076a115d767a7552c4a39e

git.kernel.org/...c/82d12088c297fa1cef670e1718b3d24f414c23f7

cve.org (CVE-2025-68797)

nvd.nist.gov (CVE-2025-68797)

Download JSON