Primary

Context

Linux Kernel NULL Pointer Dereference Vulnerability in AMD GPU Driver

Vulnerability

Patched

A vulnerability in the Linux kernel's AMD GPU driver can lead to a NULL pointer dereference. This issue arises when a command submission (cs) is made with zero chunks, causing a kernel oops by attempting to execute the incorrect userspace driver. The problem was observed in Linux kernel version 5.10.81 on NixOS, while running a Mesa application with the V3D driver override.

Impact

Exploitation of this vulnerability causes a kernel oops due to a NULL pointer dereference, disrupting normal kernel operations and potentially leading to a system crash.

Reproduction

The vulnerability can be reproduced by submitting a command to the AMD GPU driver with zero chunks, while the MESA_LOADER_DRIVER_OVERRIDE environment variable is set to 'v3d'. This can be done using the 'glxinfo' command.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.7

remediation

7.7

relevance

0.0

threat

4.8

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.7

remediation

7.7

relevance

0.0

threat

4.8

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel NULL Pointer Dereference Vulnerability in AMD GPU Driver

Vulnerability

Impact

Reproduction

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating