Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue is related to a null pointer dereference in the acpi fan probe handler of the Linux kernel's drivers/acpi/fan.ko module. An attacker can exploit this by connecting an ACPI Fan device that appears as a Platform device with the identifier "PNP0C0B" and a type other than FWNODE ACPI. This can cause the iowarrior probe function in iowarrior.c to assign a NULL value to the device variable when the device type is not FWNODE ACPI (e.g., FWNODE OF), leading to a null pointer dereference when accessing device->driver data.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.