CVE-2025-22093 — NULL Pointer Dereference in Linux
Severity
5.5MEDIUMNVD
EPSS
0.1%
top 76.27%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedApr 16
Latest updateJul 8
Description
In the Linux kernel, the following vulnerability has been resolved:
drm/amd/display: avoid NPD when ASIC does not support DMUB
ctx->dmub_srv will de NULL if the ASIC does not support DMUB, which is
tested in dm_dmub_sw_init.
However, it will be dereferenced in dmub_hw_lock_mgr_cmd if
should_use_dmub_lock returns true.
This has been the case since dmub support has been added for PSR1.
Fix this by checking for dmub_srv in should_use_dmub_lock.
[ 37.440832] BUG: kernel NULL pointer dereferenc…
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6
Affected Packages6 packages
▶CVEListV5linux/linuxb7d2461858ac75c9d6bc4ab8af1a738d0814b716 — d953e2cd59ab466569c6f9da460e01caf1c83559+6
Patches
🔴Vulnerability Details
5GHSA▶
GHSA-gjjg-hhwj-9mvj: In the Linux kernel, the following vulnerability has been resolved:
drm/amd/display: avoid NPD when ASIC does not support DMUB
ctx->dmub_srv will de↗2025-04-16
OSV▶
CVE-2025-22093: In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: avoid NPD when ASIC does not support DMUB ctx->dmub_srv will de N↗2025-04-16
📋Vendor Advisories
5Debian▶
CVE-2025-22093: linux - In the Linux kernel, the following vulnerability has been resolved: drm/amd/dis...↗2025