SB2026032574 - NULL Pointer Dereference in Linux kernel i2c busses driver

Description

This security bulletin contains information about 1 security vulnerability.

1) NULL Pointer Dereference (CVE-ID: CVE-2026-23369)

The vulnerability allows a local user to cause a denial of service.

The vulnerability exists due to a NULL pointer dereference in the i2c_i801 driver when handling ACPI I/O operations during system boot. A local user can trigger concurrent access to the i801 ACPI I/O handler, leading to a situation where the bus lock mechanism attempts to access a deregistered memory region, resulting in a kernel NULL pointer dereference and system crash.

Exploitation occurs during early boot when multiple udev threads concurrently collect device information, and no additional privileges beyond standard system access are required.

Remediation

Install update from vendor's website.

References

• https://git.kernel.org/stable/c/1c72e7b0b442ce21a1348d9b8237cfddb67048eb
• https://git.kernel.org/stable/c/9507f9953a2a5647eb42668d0c243fdbd7e72954
• https://git.kernel.org/stable/c/c726273044a5a8308a889d19d6884135c0f3321d
• https://git.kernel.org/stable/c/cfc69c2e6c699c96949f7b0455195b0bfb7dc715