CVE-2025-38705

Summary

In the Linux kernel, the following vulnerability has been resolved:

drm/amd/pm: fix null pointer access

Writing a string without delimiters (' ', '\n', '\0') to the under gpu_od/fan_ctrl sysfs or pp_power_profile_mode for the CUSTOM profile will result in a null pointer dereference.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux37c5c4dbf03b167b5ca68d4bbc7fb6c92a463fb4 < a83ffafd02a7af59848755c109d544e3894af737affected
LinuxLinux37c5c4dbf03b167b5ca68d4bbc7fb6c92a463fb4 < 5d8cc029e5595760c7d18c64632e8e40a86a9b2eaffected
LinuxLinux37c5c4dbf03b167b5ca68d4bbc7fb6c92a463fb4 < cef79c18538e9ce2ca6e5b3fa95c38ec41dcd07aaffected
LinuxLinux37c5c4dbf03b167b5ca68d4bbc7fb6c92a463fb4 < d524d40e3a6152a3ea1125af729f8cd8ca65efdeaffected
LinuxLinux4.17affected
LinuxLinux0 < 4.17unaffected
LinuxLinux6.12.43 <= 6.12.*unaffected
LinuxLinux6.15.11 <= 6.15.*unaffected
LinuxLinux6.16.2 <= 6.16.*unaffected
LinuxLinux6.17 <= *unaffected

Weaknesses

References