-

CVE-2025-38362

EPSS 0.02%
Veröffentlicht 25.07.2025 13:15:25
Zuletzt bearbeitet 25.07.2025 15:29:19
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
Teams Watchlist Login
Unerledigt Login

In the Linux kernel, the following vulnerability has been resolved:

drm/amd/display: Add null pointer check for get_first_active_display()

The function mod_hdcp_hdcp1_enable_encryption() calls the function
get_first_active_display(), but does not check its return value.
The return value is a null pointer if the display list is empty.
This will lead to a null pointer dereference in
mod_hdcp_hdcp2_enable_encryption().

Add a null pointer check for get_first_active_display() and return
MOD_HDCP_STATUS_DISPLAY_NOT_FOUND if the function return null.

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 9

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version < 34d3e10ab905f06445f8dbd8a3d9697095e71bae

Version 2deade5ede56581722c0d7672f28b09548dc0fc4

Status affected

Version < 1ebcdf38887949def1a553ff3e45c98ed95a3cd0

Version 2deade5ede56581722c0d7672f28b09548dc0fc4

Status affected

Version < 5148c7ea69e9c5bf2f05081190f45ba96d3d1e7a

Version 2deade5ede56581722c0d7672f28b09548dc0fc4

Status affected

Version < 4ce9f2dc9ff7cc410e8c5d936ec551e26b9599a9

Version 2deade5ede56581722c0d7672f28b09548dc0fc4

Status affected

Version < b3005145eab98d36777660b8893466e4f630ae1c

Version 2deade5ede56581722c0d7672f28b09548dc0fc4

Status affected

Version < c3e9826a22027a21d998d3e64882fa377b613006

Version 2deade5ede56581722c0d7672f28b09548dc0fc4

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 5.8

Status affected

Version < 5.8

Version 0

Status unaffected

Version <= 5.15.*

Version 5.15.187

Status unaffected

Version <= 6.1.*

Version 6.1.143

Status unaffected

Version <= 6.6.*

Version 6.6.96

Status unaffected

Version <= 6.12.*

Version 6.12.36

Status unaffected

Version <= 6.15.*

Version 6.15.5

Status unaffected

Version <= *

Version 6.16

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.02%	0.042

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

https://git.kernel.org/stable/c/1ebcdf38887949def1a553ff3e45c98ed95a3cd0

https://git.kernel.org/stable/c/34d3e10ab905f06445f8dbd8a3d9697095e71bae

https://git.kernel.org/stable/c/4ce9f2dc9ff7cc410e8c5d936ec551e26b9599a9

https://git.kernel.org/stable/c/5148c7ea69e9c5bf2f05081190f45ba96d3d1e7a

https://git.kernel.org/stable/c/b3005145eab98d36777660b8893466e4f630ae1c

https://git.kernel.org/stable/c/c3e9826a22027a21d998d3e64882fa377b613006

https://nvd.nist.gov/vuln/detail/CVE-2025-38362

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-38362

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-38362

EUVD