VDB
DEBIAN-CVE-2025-68755
DEBIAN-CVE-2025-68755
PUBLISHED
In the Linux kernel, the following vulnerability has been resolved: staging: most: remove broken i2c driver The MOST I2C driver has been completely broken for five years without anyone noticing so remove the driver from staging. Specifically, commit 723de0f9171e ("staging: most: remove device from interface structure") started requiring drivers to set the interface device pointer before registration, but the I2C driver was never updated which results in a NULL pointer dereference if anyone ever tries to probe it.
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:11 | linux | 6.13, 6.13, 6.13.9-1 |
| Debian:13 | linux | 6.19.4-1, 0, 6.12.38-1 |
| Debian:12 | linux | 6.13.6-1, *, * |
| Debian:14 | linux | *, 6.17.2-1, 6.17.13-1 |
Timeline
- Jan 5, 2026 CVE Published
- Apr 28, 2026 CVE Updated