CVE-2025-39820

Summary

In the Linux kernel, the following vulnerability has been resolved:

drm/msm/dpu: Add a null ptr check for dpu_encoder_needs_modeset

The drm_atomic_get_new_connector_state() can return NULL if the connector is not part of the atomic state. Add a check to prevent a NULL pointer dereference.

This follows the same pattern used in dpu_encoder_update_topology() within the same file, which checks for NULL before using conn_state.

Patchwork: https://patchwork.freedesktop.org/patch/665188/

Affected Software

VendorProductVersion RangeStatus
LinuxLinux1ce69c265a53c61c5c29f97f542ff89af3f3d7e7 < aaec54254b02f5959c3670177037464d828b2140affected
LinuxLinux1ce69c265a53c61c5c29f97f542ff89af3f3d7e7 < abebfed208515726760d79cf4f9f1a76b9a10a84affected
LinuxLinux6.15affected
LinuxLinux0 < 6.15unaffected
LinuxLinux6.16.5 <= 6.16.*unaffected
LinuxLinux6.17 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References