Linux Kernel NULL Dereference and Use-After-Free Vulnerability in DRM DisplayPort MST Handling

Vulnerability

A vulnerability in the Linux kernel's handling of DisplayPort Multi-Stream Transport (MST) can lead to a NULL dereference and use-after-free condition. This issue arises in the DRM (Direct Rendering Manager) when an MST 'up' request is processed. If the MST topology is modified concurrently by another thread, the primary MST pointer can be freed and set to NULL. This creates a race condition where the 'up' request handler attempts to use the now-invalid pointer, leading to a crash or potential exploitation.

Impact

Exploitation of this vulnerability can cause a system crash or allow for arbitrary code execution, depending on the context in which the vulnerability is triggered.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel NULL Dereference and Use-After-Free Vulnerability in DRM DisplayPort MST Handling

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating