CVE-2025-71118

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains a flaw within the ACPICA component related to handling of the ACPI Namespace. Specifically, a NULL pointer dereference can occur in the acpi ns get next node() function when start node is NULL. This issue persists despite a previous fix (commit 0c9992315e73) and can lead to system crashes. The vulnerability was observed on Honor Magicbook 14 Pro devices with DSDT table details available on GitHub. The issue arises from accessing a member of parent node when start node is NULL.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-476

Related Identifiers

AZL-74562

BDU:2026-03139

CVE-2025-71118

ECHO-62F3-975A-45C7

MGASA-2026-0017

MGASA-2026-0018

OESA-2026-1566

OESA-2026-1567

OESA-2026-1570

OPENSUSE-SU-2026:20287-1

SUSE-SU-2026:0447-1

SUSE-SU-2026:0472-1

SUSE-SU-2026:0587-1

SUSE-SU-2026:20477-1

SUSE-SU-2026:20498-1

SUSE-SU-2026:20555-1

SUSE-SU-2026:20599-1

SUSE-SU-2026:20615-1

SUSE-SU-2026:2068-1

SUSE-SU-2026:20845-1

SUSE-SU-2026:20876-1

USN-8096-1

USN-8096-2

USN-8096-3

USN-8096-4

USN-8096-5

USN-8116-1

USN-8141-1

USN-8163-1

USN-8163-2

USN-8177-1

USN-8177-2

USN-8179-1

USN-8179-2

USN-8179-3

USN-8179-4

USN-8183-1

USN-8183-2

USN-8184-1

USN-8185-1

USN-8185-2

USN-8203-1

USN-8204-1

USN-8243-1

USN-8245-1

USN-8257-1

USN-8258-1

USN-8260-1

USN-8261-1

USN-8265-1

Affected Products

Honor Magicbook 14 Pro

Linuxmint

Linux Kernel

Ubuntu

CVE-2025-71118

Weakness Enumeration

Related Identifiers

Affected Products

References · 2512