VDB

DEBIAN-CVE-2025-68755

DEBIAN-CVE-2025-68755 PUBLISHED

In the Linux kernel, the following vulnerability has been resolved: staging: most: remove broken i2c driver The MOST I2C driver has been completely broken for five years without anyone noticing so remove the driver from staging. Specifically, commit 723de0f9171e ("staging: most: remove device from interface structure") started requiring drivers to set the interface device pointer before registration, but the I2C driver was never updated which results in a NULL pointer dereference if anyone ever tries to probe it.

Affected Products

VendorProductVersions
Debian:11linux6.13, 6.13, 6.13.9-1
Debian:13linux6.19.4-1, 0, 6.12.38-1
Debian:12linux6.13.6-1, *, *
Debian:14linux*, 6.17.2-1, 6.17.13-1

Timeline

  • Jan 5, 2026 CVE Published
  • Apr 28, 2026 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›