CVE-2025-39906

Summary

In the Linux kernel, the following vulnerability has been resolved:

drm/amd/display: remove oem i2c adapter on finish

Fixes a bug where unbinding of the GPU would leave the oem i2c adapter registered resulting in a null pointer dereference when applications try to access the invalid device.

(cherry picked from commit 89923fb7ead4fdd37b78dd49962d9bb5892403e6)

Affected Software

VendorProductVersion RangeStatus
LinuxLinux3d5470c973149f479572dcf4eea064775041ea6c < c686124bcf06253620790857ff462f00f3f7a4abaffected
LinuxLinux3d5470c973149f479572dcf4eea064775041ea6c < 1dfd2864a1c4909147663e5a27c055f50f7c2796affected
LinuxLinux6.15affected
LinuxLinux0 < 6.15unaffected
LinuxLinux6.16.8 <= 6.16.*unaffected
LinuxLinux6.17 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References