Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: staging: most: remove broken i2c driver The MOST I2C driver has been completely broken for five years without anyone noticing so remove the driver from staging. Specifically, commit 723de0f9171e ("staging: most: remove device from interface structure") started requiring drivers to set the interface device pointer before registration, but the I2C driver was never updated which results in a NULL pointer dereference if anyone ever tries to probe it.
References
- https://git.kernel.org/stable/c/495df2da6944477d282d5cc0c13174d06e25b310
- https://git.kernel.org/stable/c/6059a66dba7f26b21852831432e17075f1a1c783
- https://git.kernel.org/stable/c/6cbba922934805f86eece6ba7010b7201962695d
- https://git.kernel.org/stable/c/e463548fd80e779efea1cb2d3049b8a7231e6925
FAQ
What is CVE-2025-68755?
CVE-2025-68755 is a documented vulnerability. In the Linux kernel, the following vulnerability has been resolved: staging: most: remove broken i2c driver The MOST I2C driver has been completely broken for five years without anyone noticing so r...
How severe is CVE-2025-68755?
CVSS scoring is not yet available for CVE-2025-68755. Check NVD for updates.
Is there a patch for CVE-2025-68755?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.