Impact
A missing channel array in a mailbox controller can lead to a null pointer dereference in the Linux kernel, causing an OOPS that results in a kernel crash. This failure does not directly expose data but can be used to destabilize the system and create a denial of service condition.
Affected Systems
All Linux kernel releases that contain the mailbox driver without the sanity check are potentially affected. The issue is mitigated in the latest branches that include the commit adding the check.
Risk and Exploitability
The CVSS score of 5.5 indicates moderate severity, while the EPSS score of less than 1% suggests a low likelihood of exploitation. The vulnerability is not listed in the CISA KEV catalog, implying no widespread exploitation has been reported. The attack would require an attacker to trigger a null pointer dereference in the mailbox driver, which could happen during early boot or when the driver is loaded, leading to a system crash and denial of service.
OpenCVE Enrichment
Debian DLA