Volerion logoVolerion
Volerion logoVolerion

Linux Kernel NULL Pointer Dereference Vulnerability in AMD Display Driver

Vulnerability

A vulnerability in the Linux kernel's AMD display driver can lead to a NULL pointer dereference. This issue occurs in versions of the kernel prior to 6.16.0-99-custom, when the IGT kms_cursor_legacy test performs a non-blocking mode set while an atomic cursor is active. The vulnerability can be reproduced with an eDP panel and DP monitors connected, causing a kernel crash due to the invalid memory access.

Impact

Exploitation of this vulnerability causes a kernel panic due to a NULL pointer dereference, disrupting system operations and potentially leading to a denial of service.

Reproduction

The vulnerability can be reproduced by running the IGT kms_cursor_legacy test with an eDP panel and DisplayPort monitors connected. The test will trigger a long non-blocking mode set while an atomic cursor is active, leading to a NULL pointer dereference in the AMD display driver.

Remediation

Users can upgrade to the latest stable version of the Linux kernel to address this vulnerability.

Added: Dec 16, 2025, 6:38 PM
Updated: Dec 16, 2025, 6:38 PM

Vulnerability Rating

Custom Algorithm
spread
9.0
impact
2.5
exploitability
4.3
remediation
7.7
relevance
1.5
threat
4.8
urgency
2.9
incentive
1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.