In the Linux kernel, the following vulnerability has been resolved: vfio/mdev: Fix a null-ptr-deref bug for mdev_unregister_parent() Inject fault while probing mdpy.ko, if kstrdup() of create_dir() fails in kobject_add_internal() in kobject_init_and_add() in mdev_type_add() in parent_create_sysfs_files(), it will return 0 and probe successfully. And when rmmod mdpy.ko, the mdpy_dev_exit() will call mdev_unregister_parent(), the mdev_type_remove() may traverse uninitialized parent->types[i] in parent_remove_sysfs_files(), and it will cause below null-ptr-deref. If mdev_type_add() fails, return the error code and kset_unregister() to fix the issue. general protection fault, probably for non-canonical address 0xdffffc0000000002: 0000 [#1] PREEMPT SMP KASAN KASAN: null-ptr-deref in range [0x0000000000000010-0x0000000000000017] CPU: 2 PID: 10215 Comm: rmmod Tainted: G W N 6.6.0-rc2+ #20 Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.15.0-1 04/01/2014 RIP: 0010:__kobject_del+0x62/0x1c0 Code: 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 51 01 00 00 48 b8 00 00 00 00 00 fc ff df 48 8b 6b 28 48 8d 7d 10 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 24 01 00 00 48 8b 75 10 48 89 df 48 8d 6b 3c e8 RSP: 0018:ffff88810695fd30 EFLAGS: 00010202 RAX: dffffc0000000000 RBX: ffffffffa0270268 RCX: 0000000000000000 RDX: 0000000000000002 RSI: 0000000000000004 RDI: 0000000000000010 RBP: 0000000000000000 R08: 0000000000000001 R09: ffffed10233a4ef1 R10: ffff888119d2778b R11: 0000000063666572 R12: 0000000000000000 R13: fffffbfff404e2d4 R14: dffffc0000000000 R15: ffffffffa0271660 FS: 00007fbc81981540(0000) GS:ffff888119d00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00007fc14a142dc0 CR3: 0000000110a62003 CR4: 0000000000770ee0 DR0: ffffffff8fb0bce8 DR1: ffffffff8fb0bce9 DR2: ffffffff8fb0bcea DR3: ffffffff8fb0bceb DR6: 00000000fffe0ff0 DR7: 0000000000000600 PKRU: 55555554 Call Trace: <TASK> ? die_addr+0x3d/0xa0 ? exc_general_protection+0x144/0x220 ? asm_exc_general_protection+0x22/0x30 ? __kobject_del+0x62/0x1c0 kobject_del+0x32/0x50 parent_remove_sysfs_files+0xd6/0x170 [mdev] mdev_unregister_parent+0xfb/0x190 [mdev] ? mdev_register_parent+0x270/0x270 [mdev] ? find_module_all+0x9d/0xe0 mdpy_dev_exit+0x17/0x63 [mdpy] __do_sys_delete_module.constprop.0+0x2fa/0x4b0 ? module_flags+0x300/0x300 ? __fput+0x4e7/0xa00 do_syscall_64+0x35/0x80 entry_SYSCALL_64_after_hwframe+0x46/0xb0 RIP: 0033:0x7fbc813221b7 Code: 73 01 c3 48 8b 0d d1 8c 2c 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 b0 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d a1 8c 2c 00 f7 d8 64 89 01 48 RSP: 002b:00007ffe780e0648 EFLAGS: 00000206 ORIG_RAX: 00000000000000b0 RAX: ffffffffffffffda RBX: 00007ffe780e06a8 RCX: 00007fbc813221b7 RDX: 000000000000000a RSI: 0000000000000800 RDI: 000055e214df9b58 RBP: 000055e214df9af0 R08: 00007ffe780df5c1 R09: 0000000000000000 R10: 00007fbc8139ecc0 R11: 0000000000000206 R12: 00007ffe780e0870 R13: 00007ffe780e0ed0 R14: 000055e214df9260 R15: 000055e214df9af0 </TASK> Modules linked in: mdpy(-) mdev vfio_iommu_type1 vfio [last unloaded: mdpy] Dumping ftrace buffer: (ftrace buffer empty) ---[ end trace 0000000000000000 ]--- RIP: 0010:__kobject_del+0x62/0x1c0 Code: 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 51 01 00 00 48 b8 00 00 00 00 00 fc ff df 48 8b 6b 28 48 8d 7d 10 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 24 01 00 00 48 8b 75 10 48 89 df 48 8d 6b 3c e8 RSP: 0018:ffff88810695fd30 EFLAGS: 00010202 RAX: dffffc0000000000 RBX: ffffffffa0270268 RCX: 0000000000000000 RDX: 0000000000000002 RSI: 0000000000000004 RDI: 0000000000000010 RBP: 0000000000000000 R08: 0000000000000001 R09: ffffed10233a4ef1 R10: ffff888119d2778b R11: 0000000063666572 R12: 0000000000000000 R13: fffffbfff404e2d4 R14: dffffc0000000000 R15: ffffffffa0271660 FS: 00007fbc81981540(0000) GS:ffff888119d00000(000 ---truncated---

• https://git.kernel.org/stable/c/52093779b1830ac184a23848d971f06404cf513e
• https://git.kernel.org/stable/c/c01b2e0ee22ef8b4dd7509a93aecc0ac0826bae4
• https://git.kernel.org/stable/c/c777b11d34e0f47dbbc4b018ef65ad030f2b283a
• https://git.kernel.org/stable/c/52093779b1830ac184a23848d971f06404cf513e
• https://git.kernel.org/stable/c/c01b2e0ee22ef8b4dd7509a93aecc0ac0826bae4
• https://git.kernel.org/stable/c/c777b11d34e0f47dbbc4b018ef65ad030f2b283a

• Linux » Linux Kernel » Version: 6.1
  cpe:2.3:o:linux:linux_kernel:6.1
• Linux » Linux Kernel » Version: 6.1.1
  cpe:2.3:o:linux:linux_kernel:6.1.1
• Linux » Linux Kernel » Version: 6.1.10
  cpe:2.3:o:linux:linux_kernel:6.1.10
• Linux » Linux Kernel » Version: 6.1.11
  cpe:2.3:o:linux:linux_kernel:6.1.11
• Linux » Linux Kernel » Version: 6.1.12
  cpe:2.3:o:linux:linux_kernel:6.1.12
• Linux » Linux Kernel » Version: 6.1.13
  cpe:2.3:o:linux:linux_kernel:6.1.13
• Linux » Linux Kernel » Version: 6.1.14
  cpe:2.3:o:linux:linux_kernel:6.1.14
• Linux » Linux Kernel » Version: 6.1.15
  cpe:2.3:o:linux:linux_kernel:6.1.15
• Linux » Linux Kernel » Version: 6.1.16
  cpe:2.3:o:linux:linux_kernel:6.1.16
• Linux » Linux Kernel » Version: 6.1.17
  cpe:2.3:o:linux:linux_kernel:6.1.17
• Linux » Linux Kernel » Version: 6.1.18
  cpe:2.3:o:linux:linux_kernel:6.1.18
• Linux » Linux Kernel » Version: 6.1.19
  cpe:2.3:o:linux:linux_kernel:6.1.19
• Linux » Linux Kernel » Version: 6.1.2
  cpe:2.3:o:linux:linux_kernel:6.1.2
• Linux » Linux Kernel » Version: 6.1.20
  cpe:2.3:o:linux:linux_kernel:6.1.20
• Linux » Linux Kernel » Version: 6.1.21
  cpe:2.3:o:linux:linux_kernel:6.1.21
• Linux » Linux Kernel » Version: 6.1.22
  cpe:2.3:o:linux:linux_kernel:6.1.22
• Linux » Linux Kernel » Version: 6.1.23
  cpe:2.3:o:linux:linux_kernel:6.1.23
• Linux » Linux Kernel » Version: 6.1.24
  cpe:2.3:o:linux:linux_kernel:6.1.24
• Linux » Linux Kernel » Version: 6.1.25
  cpe:2.3:o:linux:linux_kernel:6.1.25
• Linux » Linux Kernel » Version: 6.1.26
  cpe:2.3:o:linux:linux_kernel:6.1.26
• Linux » Linux Kernel » Version: 6.1.27
  cpe:2.3:o:linux:linux_kernel:6.1.27
• Linux » Linux Kernel » Version: 6.1.28
  cpe:2.3:o:linux:linux_kernel:6.1.28
• Linux » Linux Kernel » Version: 6.1.29
  cpe:2.3:o:linux:linux_kernel:6.1.29
• Linux » Linux Kernel » Version: 6.1.3
  cpe:2.3:o:linux:linux_kernel:6.1.3
• Linux » Linux Kernel » Version: 6.1.30
  cpe:2.3:o:linux:linux_kernel:6.1.30
• Linux » Linux Kernel » Version: 6.1.31
  cpe:2.3:o:linux:linux_kernel:6.1.31
• Linux » Linux Kernel » Version: 6.1.32
  cpe:2.3:o:linux:linux_kernel:6.1.32
• Linux » Linux Kernel » Version: 6.1.33
  cpe:2.3:o:linux:linux_kernel:6.1.33
• Linux » Linux Kernel » Version: 6.1.34
  cpe:2.3:o:linux:linux_kernel:6.1.34
• Linux » Linux Kernel » Version: 6.1.35
  cpe:2.3:o:linux:linux_kernel:6.1.35
• Linux » Linux Kernel » Version: 6.1.36
  cpe:2.3:o:linux:linux_kernel:6.1.36
• Linux » Linux Kernel » Version: 6.1.37
  cpe:2.3:o:linux:linux_kernel:6.1.37
• Linux » Linux Kernel » Version: 6.1.38
  cpe:2.3:o:linux:linux_kernel:6.1.38
• Linux » Linux Kernel » Version: 6.1.39
  cpe:2.3:o:linux:linux_kernel:6.1.39
• Linux » Linux Kernel » Version: 6.1.4
  cpe:2.3:o:linux:linux_kernel:6.1.4
• Linux » Linux Kernel » Version: 6.1.40
  cpe:2.3:o:linux:linux_kernel:6.1.40
• Linux » Linux Kernel » Version: 6.1.41
  cpe:2.3:o:linux:linux_kernel:6.1.41
• Linux » Linux Kernel » Version: 6.1.42
  cpe:2.3:o:linux:linux_kernel:6.1.42
• Linux » Linux Kernel » Version: 6.1.43
  cpe:2.3:o:linux:linux_kernel:6.1.43
• Linux » Linux Kernel » Version: 6.1.44
  cpe:2.3:o:linux:linux_kernel:6.1.44
• Linux » Linux Kernel » Version: 6.1.45
  cpe:2.3:o:linux:linux_kernel:6.1.45
• Linux » Linux Kernel » Version: 6.1.46
  cpe:2.3:o:linux:linux_kernel:6.1.46
• Linux » Linux Kernel » Version: 6.1.47
  cpe:2.3:o:linux:linux_kernel:6.1.47
• Linux » Linux Kernel » Version: 6.1.48
  cpe:2.3:o:linux:linux_kernel:6.1.48
• Linux » Linux Kernel » Version: 6.1.49
  cpe:2.3:o:linux:linux_kernel:6.1.49
• Linux » Linux Kernel » Version: 6.1.5
  cpe:2.3:o:linux:linux_kernel:6.1.5
• Linux » Linux Kernel » Version: 6.1.50
  cpe:2.3:o:linux:linux_kernel:6.1.50
• Linux » Linux Kernel » Version: 6.1.51
  cpe:2.3:o:linux:linux_kernel:6.1.51
• Linux » Linux Kernel » Version: 6.1.52
  cpe:2.3:o:linux:linux_kernel:6.1.52
• Linux » Linux Kernel » Version: 6.1.53
  cpe:2.3:o:linux:linux_kernel:6.1.53
• Linux » Linux Kernel » Version: 6.1.54
  cpe:2.3:o:linux:linux_kernel:6.1.54
• Linux » Linux Kernel » Version: 6.1.55
  cpe:2.3:o:linux:linux_kernel:6.1.55
• Linux » Linux Kernel » Version: 6.1.6
  cpe:2.3:o:linux:linux_kernel:6.1.6
• Linux » Linux Kernel » Version: 6.1.7
  cpe:2.3:o:linux:linux_kernel:6.1.7
• Linux » Linux Kernel » Version: 6.1.8
  cpe:2.3:o:linux:linux_kernel:6.1.8
• Linux » Linux Kernel » Version: 6.1.9
  cpe:2.3:o:linux:linux_kernel:6.1.9
• Linux » Linux Kernel » Version: 6.2
  cpe:2.3:o:linux:linux_kernel:6.2
• Linux » Linux Kernel » Version: 6.2.0
  cpe:2.3:o:linux:linux_kernel:6.2.0
• Linux » Linux Kernel » Version: 6.2.1
  cpe:2.3:o:linux:linux_kernel:6.2.1
• Linux » Linux Kernel » Version: 6.2.10
  cpe:2.3:o:linux:linux_kernel:6.2.10
• Linux » Linux Kernel » Version: 6.2.11
  cpe:2.3:o:linux:linux_kernel:6.2.11
• Linux » Linux Kernel » Version: 6.2.12
  cpe:2.3:o:linux:linux_kernel:6.2.12
• Linux » Linux Kernel » Version: 6.2.13
  cpe:2.3:o:linux:linux_kernel:6.2.13
• Linux » Linux Kernel » Version: 6.2.14
  cpe:2.3:o:linux:linux_kernel:6.2.14
• Linux » Linux Kernel » Version: 6.2.15
  cpe:2.3:o:linux:linux_kernel:6.2.15
• Linux » Linux Kernel » Version: 6.2.16
  cpe:2.3:o:linux:linux_kernel:6.2.16
• Linux » Linux Kernel » Version: 6.2.2
  cpe:2.3:o:linux:linux_kernel:6.2.2
• Linux » Linux Kernel » Version: 6.2.3
  cpe:2.3:o:linux:linux_kernel:6.2.3
• Linux » Linux Kernel » Version: 6.2.4
  cpe:2.3:o:linux:linux_kernel:6.2.4
• Linux » Linux Kernel » Version: 6.2.5
  cpe:2.3:o:linux:linux_kernel:6.2.5
• Linux » Linux Kernel » Version: 6.2.6
  cpe:2.3:o:linux:linux_kernel:6.2.6
• Linux » Linux Kernel » Version: 6.2.7
  cpe:2.3:o:linux:linux_kernel:6.2.7
• Linux » Linux Kernel » Version: 6.2.8
  cpe:2.3:o:linux:linux_kernel:6.2.8
• Linux » Linux Kernel » Version: 6.2.9
  cpe:2.3:o:linux:linux_kernel:6.2.9
• Linux » Linux Kernel » Version: 6.3
  cpe:2.3:o:linux:linux_kernel:6.3
• Linux » Linux Kernel » Version: 6.3.1
  cpe:2.3:o:linux:linux_kernel:6.3.1
• Linux » Linux Kernel » Version: 6.3.10
  cpe:2.3:o:linux:linux_kernel:6.3.10
• Linux » Linux Kernel » Version: 6.3.11
  cpe:2.3:o:linux:linux_kernel:6.3.11
• Linux » Linux Kernel » Version: 6.3.12
  cpe:2.3:o:linux:linux_kernel:6.3.12
• Linux » Linux Kernel » Version: 6.3.13
  cpe:2.3:o:linux:linux_kernel:6.3.13
• Linux » Linux Kernel » Version: 6.3.2
  cpe:2.3:o:linux:linux_kernel:6.3.2
• Linux » Linux Kernel » Version: 6.3.3
  cpe:2.3:o:linux:linux_kernel:6.3.3
• Linux » Linux Kernel » Version: 6.3.4
  cpe:2.3:o:linux:linux_kernel:6.3.4
• Linux » Linux Kernel » Version: 6.3.5
  cpe:2.3:o:linux:linux_kernel:6.3.5
• Linux » Linux Kernel » Version: 6.3.6
  cpe:2.3:o:linux:linux_kernel:6.3.6
• Linux » Linux Kernel » Version: 6.3.7
  cpe:2.3:o:linux:linux_kernel:6.3.7
• Linux » Linux Kernel » Version: 6.3.8
  cpe:2.3:o:linux:linux_kernel:6.3.8
• Linux » Linux Kernel » Version: 6.3.9
  cpe:2.3:o:linux:linux_kernel:6.3.9
• Linux » Linux Kernel » Version: 6.4
  cpe:2.3:o:linux:linux_kernel:6.4
• Linux » Linux Kernel » Version: 6.4.1
  cpe:2.3:o:linux:linux_kernel:6.4.1
• Linux » Linux Kernel » Version: 6.4.10
  cpe:2.3:o:linux:linux_kernel:6.4.10
• Linux » Linux Kernel » Version: 6.4.11
  cpe:2.3:o:linux:linux_kernel:6.4.11
• Linux » Linux Kernel » Version: 6.4.12
  cpe:2.3:o:linux:linux_kernel:6.4.12
• Linux » Linux Kernel » Version: 6.4.13
  cpe:2.3:o:linux:linux_kernel:6.4.13
• Linux » Linux Kernel » Version: 6.4.14
  cpe:2.3:o:linux:linux_kernel:6.4.14
• Linux » Linux Kernel » Version: 6.4.15
  cpe:2.3:o:linux:linux_kernel:6.4.15
• Linux » Linux Kernel » Version: 6.4.16
  cpe:2.3:o:linux:linux_kernel:6.4.16
• Linux » Linux Kernel » Version: 6.4.2
  cpe:2.3:o:linux:linux_kernel:6.4.2
• Linux » Linux Kernel » Version: 6.4.3
  cpe:2.3:o:linux:linux_kernel:6.4.3
• Linux » Linux Kernel » Version: 6.4.4
  cpe:2.3:o:linux:linux_kernel:6.4.4
• Linux » Linux Kernel » Version: 6.4.5
  cpe:2.3:o:linux:linux_kernel:6.4.5
• Linux » Linux Kernel » Version: 6.4.6
  cpe:2.3:o:linux:linux_kernel:6.4.6
• Linux » Linux Kernel » Version: 6.4.7
  cpe:2.3:o:linux:linux_kernel:6.4.7
• Linux » Linux Kernel » Version: 6.4.8
  cpe:2.3:o:linux:linux_kernel:6.4.8
• Linux » Linux Kernel » Version: 6.4.9
  cpe:2.3:o:linux:linux_kernel:6.4.9
• Linux » Linux Kernel » Version: 6.5
  cpe:2.3:o:linux:linux_kernel:6.5
• Linux » Linux Kernel » Version: 6.5.1
  cpe:2.3:o:linux:linux_kernel:6.5.1
• Linux » Linux Kernel » Version: 6.5.2
  cpe:2.3:o:linux:linux_kernel:6.5.2
• Linux » Linux Kernel » Version: 6.5.3
  cpe:2.3:o:linux:linux_kernel:6.5.3
• Linux » Linux Kernel » Version: 6.5.4
  cpe:2.3:o:linux:linux_kernel:6.5.4
• Linux » Linux Kernel » Version: 6.5.5
  cpe:2.3:o:linux:linux_kernel:6.5.5
• Linux » Linux Kernel » Version: 6.6
  cpe:2.3:o:linux:linux_kernel:6.6