CVE-2025-22084

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A NULL pointer dereference issue has been identified in the Linux kernel, specifically in the w1 uart probe() function. This function calls w1 uart serdev open(), which includes devm serdev device open(), before setting the client ops via serdev device set client ops(). This ordering can trigger a NULL pointer dereference in the serdev controller's receive buf handler, as it assumes serdev->ops is valid when SERPORT ACTIVE is set. The issue is similar to a previously fixed race condition where devm serdev device open() was called before fully initializing the device.

Recommendations To resolve this issue, ensure that client ops are set before enabling the port via w1 uart serdev open(). As a temporary workaround, consider disabling the w1 uart probe() function until a patch is available. Restrict access to the vulnerable serdev module to minimize the risk of exploitation. Avoid using the serdev device set client ops() function in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.