CVE-2026-43300

Summary

In the Linux kernel, the following vulnerability has been resolved:

drm/panel: Fix a possible null-pointer dereference in jdi_panel_dsi_remove()

In jdi_panel_dsi_remove(), jdi is explicitly checked, indicating that it may be NULL:

if (!jdi) mipi_dsi_detach(dsi);

However, when jdi is NULL, the function does not return and continues by calling jdi_panel_disable():

err = jdi_panel_disable(&jdi->base);

Inside jdi_panel_disable(), jdi is dereferenced unconditionally, which can lead to a NULL-pointer dereference:

struct jdi_panel *jdi = to_panel_jdi(panel); backlight_disable(jdi->backlight);

To prevent such a potential NULL-pointer dereference, return early from jdi_panel_dsi_remove() when jdi is NULL.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux25205087df1ffe06ccea9302944ed1f77dc68c6f < ec2f37bbb733cdd7ed7d04171fca728a532414d5affected
LinuxLinux25205087df1ffe06ccea9302944ed1f77dc68c6f < 2f5427d8726b22b807beec248d7d6bf88e291e0baffected
LinuxLinux25205087df1ffe06ccea9302944ed1f77dc68c6f < 83ce0085fabf757b039322928188ad78e962d609affected
LinuxLinux25205087df1ffe06ccea9302944ed1f77dc68c6f < 95eed73b871111123a8b1d31cb1fce7e902e49eaaffected
LinuxLinux6.7affected
LinuxLinux0 < 6.7unaffected
LinuxLinux6.12.75 <= 6.12.*unaffected
LinuxLinux6.18.16 <= 6.18.*unaffected
LinuxLinux6.19.6 <= 6.19.*unaffected
LinuxLinux7.0 <= *unaffected

Weaknesses

References