Linux Kernel NULL Pointer Dereference Vulnerability in DRM V3D Component

Vulnerability

A vulnerability in the Linux kernel's DRM V3D component can lead to the NULL pointer dereference, causing a kernel panic. This issue arises when a file descriptor is closed before the associated jobs are completed. Upon job completion, the global and per-file descriptor GPU statistics are updated. If the file descriptor has already been closed, the relevant data structures and statistics are freed, leading to the inability to update the per-file descriptor stats. The vulnerability has been observed in Linux kernel version 6.12.25 on Raspberry Pi 4 Model B.

Impact

Exploitation of this vulnerability causes a kernel panic, disrupting system operations and leading to a fatal exception in the interrupt handling process.

Added: Jul 4, 2025, 3:49 PM

Updated: Jul 4, 2025, 3:49 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

7.7

relevance

0.2

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

7.7

relevance

0.2

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel NULL Pointer Dereference Vulnerability in DRM V3D Component

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating