In the Linux kernel, the following vulnerability has been resolved: usb: ucsi: Fix NULL pointer deref in ucsiconnectorchange() When ucsiinit() fails, ucsi->connector is NULL, yet in case of ucsiacpi we may still get events which cause the ucsacpi code to call ucsiconnectorchange(), which then derefs the NULL ucsi->connector pointer. Fix this by not setting ucsi->ntfy inside ucsiinit() until ucsiinit() has succeeded, so that ucsiconnectorchange() ignores the events because UCSIENABLENTFYCONNECTOR_CHANGE is not set in the ntfy mask.