Impact
The flaw occurs in the Linux kernel USB Type‑C driver when a partnership registration fails; the code reports the error but continues to use the returned pointer, which may contain an error value. Dereferencing this value can cause the kernel to crash, resulting in a denial‑of‑service condition. The vulnerability does not provide a direct path to code execution. The defect was identified by the Smatch static analyzer and confirmed by a specific commit sequence that fixed the missing early return and corrected a typo in the warning message.
Affected Systems
All Linux kernel builds that include the USB Type‑C driver with a partner registration routine are affected. No specific kernel version range is listed; the issue exists in any release that contains the buggy code before the documented commits. Updating to a kernel version incorporating the fixes from the referenced commits or newer kernels should eliminate the problem.
Risk and Exploitability
Based on the description, it is inferred that an attacker would need to physically interact with a USB Type‑C device to trigger a partner registration failure. The EPSS score (< 1%) and the CVSS score of 5.5 suggest exploitation is unlikely, but could lead to a kernel panic. Because it is not listed in the CISA KEV catalog, no known exploits exist. The risk level is moderate due to the potential for a DoS scenario.
OpenCVE Enrichment