Linux Kernel NULL Pointer Dereference Vulnerability in DRM MSM Component

A vulnerability in the Linux kernel's DRM MSM (Mobile Station Modem) component can lead to a NULL pointer dereference. This issue occurs during the uninstallation of interrupts, particularly on platforms that do not utilize the DPU (Display Processing Unit) controller. In such cases, if there are early initialization errors, the deinitialization process may be invoked with the KMS (Kernel Mode Setting) pointer set to NULL, causing a null dereference.

Impact

Exploitation of this vulnerability leads to a NULL pointer dereference, which can cause a system crash or instability by creating a denial-of-service condition.

Reproduction

The vulnerability can be reproduced on platforms that do not use the DPU controller. After an early initialization error, the deinitialization code is called with the KMS pointer set to NULL, which triggers the NULL pointer dereference during the interrupt uninstallation process.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been addressed. The specific commit that resolves this issue is available in the Linux stable tree.