Primary

Context

Linux Kernel NULL Pointer Dereference Vulnerability in DRM VBlank Management

Vulnerability

A NULL pointer dereference vulnerability has been identified in the Linux kernel's Direct Rendering Manager (DRM) subsystem. This issue arises in the vblank initialization process, where a NULL worker pointer can be dereferenced, leading to a crash. The vulnerability occurs in versions of the Linux kernel that include the problematic vblank management code.

Impact

Exploitation of this vulnerability leads to a NULL pointer dereference, causing a kernel crash.

Reproduction

The vulnerability can be reproduced by loading a kernel module that initializes a virtual KMS (VKMS) driver. During the initialization, the DRM vblank management system is set up. If the action to add a cleanup routine fails, the system inadvertently tries to release a vblank worker that is NULL, causing a NULL pointer dereference when the worker is destroyed.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.3

remediation

0.0

relevance

0.0

threat

4.8

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.3

remediation

0.0

relevance

0.0

threat

4.8

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel NULL Pointer Dereference Vulnerability in DRM VBlank Management

Vulnerability

Impact

Reproduction

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating