CVE-2025-40354

Summary

In the Linux kernel, the following vulnerability has been resolved:

drm/amd/display: increase max link count and fix link->enc NULL pointer access

[why] 1.) dc->links[MAX_LINKS] array size smaller than actual requested. max_connector + max_dpia + 4 virtual = 14. increase from 12 to 14.

2.) hw_init() access null LINK_ENC for dpia non display_endpoint.

(cherry picked from commit d7f5a61e1b04ed87b008c8d327649d184dc5bb45)

Affected Software

VendorProductVersion RangeStatus
LinuxLinux4562236b3bc0a28aeb6ee93b2d8a849a4c4e1c7c < f28092be4e12b7df9e4f415d25bf0d767bc2d9edaffected
LinuxLinux4562236b3bc0a28aeb6ee93b2d8a849a4c4e1c7c < a3fc0d36cfb927f8986b83bf5fba47dbedad3c63affected
LinuxLinux4562236b3bc0a28aeb6ee93b2d8a849a4c4e1c7c < bec947cbe9a65783adb475a5fb47980d7b4f4796affected
LinuxLinux4.15affected
LinuxLinux0 < 4.15unaffected
LinuxLinux6.12.56 <= 6.12.*unaffected
LinuxLinux6.17.6 <= 6.17.*unaffected
LinuxLinux6.18 <= *unaffected

Weaknesses

References