CVE-2025-21985
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
drm/amd/display: Fix out-of-bound accesses
[WHAT & HOW] hpo_stream_to_link_encoder_mapping has size MAX_HPO_DP2_ENCODERS(=4), but location can have size up to 6. As a result, it is necessary to check location against MAX_HPO_DP2_ENCODERS.
Similiarly, disp_cfg_stream_location can be used as an array index which should be 0..5, so the ASSERT's conditions should be less without equal.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 4562236b3bc0a28aeb6ee93b2d8a849a4c4e1c7c < 36793d90d76f667d26c6dd025571481ee0c96abc | affected |
| Linux | Linux | 4562236b3bc0a28aeb6ee93b2d8a849a4c4e1c7c < 9aedc776b11038f04f4641241bb7e877781e4aa4 | affected |
| Linux | Linux | 4562236b3bc0a28aeb6ee93b2d8a849a4c4e1c7c < 8adbb2a98b00926315fd513b5fe2596b5716b82d | affected |
| Linux | Linux | 4.15 | affected |
| Linux | Linux | 0 < 4.15 | unaffected |
| Linux | Linux | 6.12.20 <= 6.12.* | unaffected |
| Linux | Linux | 6.13.8 <= 6.13.* | unaffected |
| Linux | Linux | 6.14 <= * | unaffected |
Weaknesses
References
- https://git.kernel.org/stable/c/36793d90d76f667d26c6dd025571481ee0c96abc
- https://git.kernel.org/stable/c/9aedc776b11038f04f4641241bb7e877781e4aa4
- https://git.kernel.org/stable/c/8adbb2a98b00926315fd513b5fe2596b5716b82d
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.