CVE-2025-68228

Summary

In the Linux kernel, the following vulnerability has been resolved:

drm/plane: Fix create_in_format_blob() return value

create_in_format_blob() is either supposed to return a valid pointer or an error, but never NULL. The caller will dereference the blob when it is not an error, and thus will oops if NULL returned. Return proper error values in the failure cases.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux0d6dcd741c266389bbf0a8758f537b3a171ac32a < 860f93f4fce1e733b8a2474f6bfa153243d775f3affected
LinuxLinux0d6dcd741c266389bbf0a8758f537b3a171ac32a < cead55e24cf9e092890cf51c0548eccd7569defaaffected
LinuxLinux6.16affected
LinuxLinux0 < 6.16unaffected
LinuxLinux6.17.10 <= 6.17.*unaffected
LinuxLinux6.18 <= *unaffected

Weaknesses

References