CVE-2025-71083

Summary

In the Linux kernel, the following vulnerability has been resolved:

drm/ttm: Avoid NULL pointer deref for evicted BOs

It is possible for a BO to exist that is not currently associated with a resource, e.g. because it has been evicted.

When devcoredump tries to read the contents of all BOs for dumping, we need to expect this as well – in this case, ENODATA is recorded instead of the buffer contents.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux09ac4fcb3f255e9225967c75f5893325c116cdbe < 47a85604a761005d255ae38115ee630cc6931756affected
LinuxLinux09ac4fcb3f255e9225967c75f5893325c116cdbe < 4b9944493c6d92d7b29cfd83aaf3deb842b8da79affected
LinuxLinux09ac4fcb3f255e9225967c75f5893325c116cdbe < 3d004f7341d4898889801ebb2ef61ffca610dd6faffected
LinuxLinux09ac4fcb3f255e9225967c75f5893325c116cdbe < 5a81095d3e1b521ac7cfe3b14d5f149bace3d6e0affected
LinuxLinux09ac4fcb3f255e9225967c75f5893325c116cdbe < b94182b3d7228aec18d069cba56d5982e9bfe1b1affected
LinuxLinux09ac4fcb3f255e9225967c75f5893325c116cdbe < 491adc6a0f9903c32b05f284df1148de39e8e644affected
LinuxLinux4.14affected
LinuxLinux0 < 4.14unaffected
LinuxLinux5.15.198 <= 5.15.*unaffected
LinuxLinux6.1.160 <= 6.1.*unaffected
LinuxLinux6.6.120 <= 6.6.*unaffected
LinuxLinux6.12.64 <= 6.12.*unaffected
LinuxLinux6.18.4 <= 6.18.*unaffected
LinuxLinux6.19 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References