5.5
CVE-2025-38098
- EPSS 0.16%
- Veröffentlicht 03.07.2025 08:13:58
- Zuletzt bearbeitet 20.11.2025 21:52:51
- CVE-Watchlists
- Unerledigt
drm/amd/display: Don't treat wb connector as physical in create_validate_stream_for_sink
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Don't treat wb connector as physical in create_validate_stream_for_sink Don't try to operate on a drm_wb_connector as an amdgpu_dm_connector. While dereferencing aconnector->base will "work" it's wrong and might lead to unknown bad things. Just... don't.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Linux ≫ Linux Kernel Version >= 6.7.2 < 6.12.31
Linux ≫ Linux Kernel Version >= 6.13 < 6.14.9
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.16% | 0.05 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5.5 | 1.8 | 3.6 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
|
https://git.kernel.org/stable/c/b14e726d57f61085485f107a6203c50a09695abd
https://git.kernel.org/stable/c/18ca68f7c657721583a75cab01f0d0d2ec63a6c9
https://git.kernel.org/stable/c/cbf4890c6f28fb1ad733e14613fbd33c2004bced