Linux Kernel Null Pointer Dereference Vulnerability in AMD GPU Driver

A null pointer dereference vulnerability has been identified in the Linux kernel's AMD GPU driver. This issue occurs in versions of the kernel prior to 5.16.0 when the software power management unit (PMU) is disabled. The vulnerability arises because the driver does not properly check if certain functions are initialized before releasing the context, leading to a kernel panic. The problem was observed during the 'amdgpu_test' process, where the driver attempted to access an uninitialized pointer, causing a crash.

Impact

Exploitation of this vulnerability leads to a kernel panic due to a null pointer dereference, causing a denial of service by crashing the system.

Reproduction

The vulnerability can be reproduced by using a custom Linux kernel version 5.16.0 that includes the AMD GPU driver. When the software power management is disabled, and the 'amdgpu_test' command is executed, the driver will attempt to release a context without proper initialization, triggering a null pointer dereference and causing a kernel panic.