CVE-2025-39705

EPSS 0.02%
Veröffentlicht 05.09.2025 17:21:11
Zuletzt bearbeitet 08.09.2025 16:25:38
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
Teams Watchlist Login
Unerledigt Login

In the Linux kernel, the following vulnerability has been resolved:

drm/amd/display: fix a Null pointer dereference vulnerability

[Why]
A null pointer dereference vulnerability exists in the AMD display driver's
(DC module) cleanup function dc_destruct().
When display control context (dc->ctx) construction fails
(due to memory allocation failure), this pointer remains NULL.
During subsequent error handling when dc_destruct() is called,
there's no NULL check before dereferencing the perf_trace member
(dc->ctx->perf_trace), causing a kernel null pointer dereference crash.

[How]
Check if dc->ctx is non-NULL before dereferencing.

(Updated commit text and removed unnecessary error message)
(cherry picked from commit 9dd8e2ba268c636c240a918e0a31e6feaee19404)

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 6

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version < 0961673cc5f0055957aa46f25eb4ef6c07e00165

Version 4562236b3bc0a28aeb6ee93b2d8a849a4c4e1c7c

Status affected

Version < 4ade995b9b25b3c6e8dc42c27070340f1358d8c8

Version 4562236b3bc0a28aeb6ee93b2d8a849a4c4e1c7c

Status affected

Version < 1bcf63a44381691d6192872801f830ce3250e367

Version 4562236b3bc0a28aeb6ee93b2d8a849a4c4e1c7c

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 4.15

Status affected

Version < 4.15

Version 0

Status unaffected

Version <= 6.12.*

Version 6.12.44

Status unaffected

Version <= 6.16.*

Version 6.16.4

Status unaffected

Version <= *

Version 6.17-rc1

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.02%	0.05

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

https://git.kernel.org/stable/c/0961673cc5f0055957aa46f25eb4ef6c07e00165

https://git.kernel.org/stable/c/4ade995b9b25b3c6e8dc42c27070340f1358d8c8

https://git.kernel.org/stable/c/1bcf63a44381691d6192872801f830ce3250e367

https://nvd.nist.gov/vuln/detail/CVE-2025-39705

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-39705

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-39705

EUVD