CVE-2025-39705
- Source
- https://cve.org/CVERecord?id=CVE-2025-39705
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-39705.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2025-39705
- Downstream
- Related
- Published
- 2025-09-05T17:21:11.767Z
- Modified
- 2026-03-12T02:17:55.352971Z
- Summary
- drm/amd/display: fix a Null pointer dereference vulnerability
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
drm/amd/display: fix a Null pointer dereference vulnerability
[Why] A null pointer dereference vulnerability exists in the AMD display driver's (DC module) cleanup function dcdestruct(). When display control context (dc->ctx) construction fails (due to memory allocation failure), this pointer remains NULL. During subsequent error handling when dcdestruct() is called, there's no NULL check before dereferencing the perftrace member (dc->ctx->perftrace), causing a kernel null pointer dereference crash.
[How] Check if dc->ctx is non-NULL before dereferencing.
(Updated commit text and removed unnecessary error message) (cherry picked from commit 9dd8e2ba268c636c240a918e0a31e6feaee19404)
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/39xxx/CVE-2025-39705.json", "cna_assigner": "Linux" }- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/0961673cc5f0055957aa46f25eb4ef6c07e00165
- https://git.kernel.org/stable/c/1bcf63a44381691d6192872801f830ce3250e367
- https://git.kernel.org/stable/c/4ade995b9b25b3c6e8dc42c27070340f1358d8c8
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/39xxx/CVE-2025-39705.json
- https://nvd.nist.gov/vuln/detail/CVE-2025-39705