Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue is related to a null pointer dereference in the ems pcmcia remove function of the Linux kernel's ems pcmcia.ko module. This can be exploited to cause a denial of service when connecting and disconnecting the EMS CPC-CARD CAN device, which is represented as a PCMCIA device with an EMS CAN signature other than 0xAA55. The problem arises from the ems pcmcia probe function ignoring an error returned by the ems pcmcia add card function, leading to the ems pcmcia del card function being called to free resources and set the pdev->priv pointer to null. Since the error code is ignored and zero is returned, the ems pcmcia remove function is called when the driver is unloaded, which in turn calls ems pcmcia del card again, resulting in a null pointer dereference.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.