-

CVE-2025-39675

EPSS 0.04%
Veröffentlicht 05.09.2025 17:20:41
Zuletzt bearbeitet 03.11.2025 18:16:38
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

In the Linux kernel, the following vulnerability has been resolved:

drm/amd/display: Add null pointer check in mod_hdcp_hdcp1_create_session()

The function mod_hdcp_hdcp1_create_session() calls the function
get_first_active_display(), but does not check its return value.
The return value is a null pointer if the display list is empty.
This will lead to a null pointer dereference.

Add a null pointer check for get_first_active_display() and return
MOD_HDCP_STATUS_DISPLAY_NOT_FOUND if the function return null.

This is similar to the commit c3e9826a2202
("drm/amd/display: Add null pointer check for get_first_active_display()").

(cherry picked from commit 5e43eb3cd731649c4f8b9134f857be62a416c893)

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 10

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version < 2af45aadb7b5d3852c76e2d1e985289ada6f48bf

Version 2deade5ede56581722c0d7672f28b09548dc0fc4

Status affected

Version < ee0373b20bb67b1f00a1b25ccd24c8ac996b6446

Version 2deade5ede56581722c0d7672f28b09548dc0fc4

Status affected

Version < 857b8387a9777e42b36e0400be99b54c251eaf9a

Version 2deade5ede56581722c0d7672f28b09548dc0fc4

Status affected

Version < 97fc94c5fd3c6ac5a13e457d38ee247737b8c4bd

Version 2deade5ede56581722c0d7672f28b09548dc0fc4

Status affected

Version < 2ee86b764c54e0d6a5464fb023b630fdf20869cd

Version 2deade5ede56581722c0d7672f28b09548dc0fc4

Status affected

Version < 7a2ca2ea64b1b63c8baa94a8f5deb70b2248d119

Version 2deade5ede56581722c0d7672f28b09548dc0fc4

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 5.8

Status affected

Version < 5.8

Version 0

Status unaffected

Version <= 5.15.*

Version 5.15.190

Status unaffected

Version <= 6.1.*

Version 6.1.149

Status unaffected

Version <= 6.6.*

Version 6.6.103

Status unaffected

Version <= 6.12.*

Version 6.12.44

Status unaffected

Version <= 6.16.*

Version 6.16.4

Status unaffected

Version <= *

Version 6.17

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.04%	0.103

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

https://git.kernel.org/stable/c/2af45aadb7b5d3852c76e2d1e985289ada6f48bf

https://git.kernel.org/stable/c/ee0373b20bb67b1f00a1b25ccd24c8ac996b6446

https://git.kernel.org/stable/c/857b8387a9777e42b36e0400be99b54c251eaf9a

https://git.kernel.org/stable/c/97fc94c5fd3c6ac5a13e457d38ee247737b8c4bd

https://git.kernel.org/stable/c/2ee86b764c54e0d6a5464fb023b630fdf20869cd

https://git.kernel.org/stable/c/7a2ca2ea64b1b63c8baa94a8f5deb70b2248d119

https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html

https://nvd.nist.gov/vuln/detail/CVE-2025-39675

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-39675

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-39675

EUVD