CVE-2025-39693

MEDIUM EPSS 4.2%
Published Sep 5, 20259mo ago · Modified Jun 17, 20261w ago
5.5 CVSS 3.1
Medium
Find Similar
Published Sep 5, 2025 9mo ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Avoid a NULL pointer dereference [WHY] Although unlikely drm_atomic_get_new_connector_state() or drm_atomic_get_old_connector_state() can return NULL. [HOW] Check returns before dereference. (cherry picked from commit 1e5e8d672fec9f2ab352be121be971877bff2af9)

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
4.2% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-476 NULL Pointer Dereference Memory Safety

Affected Products 8

VendorProductVersionRange
linuxlinux_kernel*≥4.15  –  <5.15.190
linuxlinux_kernel*≥5.16  –  <6.1.149
linuxlinux_kernel*≥6.2  –  <6.6.103
linuxlinux_kernel*≥6.7  –  <6.12.44
linuxlinux_kernel*≥6.13  –  <6.16.4
linuxlinux_kernel6.17any
linuxlinux_kernel6.17any
debiandebian_linux11.0any

References 8

  • cert-portal.siemens.com https://cert-portal.siemens.com/productcert/html/ssa-032379.html
  • git.kernel.org https://git.kernel.org/stable/c/07b93a5704b0b72002f0c4bd1076214af67dc661
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/0c1a486cbe6f9cb194e3c4a8ade4af2a642ba165
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/36a6b43573d152736eaf2557fe60580dd73e9350
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/6f860abff89417c0354b6ee5bbca188a233c5762
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/9c92d12b5cb9d9d88c12ae71794d3a7382fcdec0
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f653dd30839eb4f573a7539e90b8a58ff9bedf2f
    Patch
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html
    Third Party Advisory

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/07b93a5704b0b72002f0c4bd1076214af67dc661
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/0c1a486cbe6f9cb194e3c4a8ade4af2a642ba165
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/36a6b43573d152736eaf2557fe60580dd73e9350
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/6f860abff89417c0354b6ee5bbca188a233c5762
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/9c92d12b5cb9d9d88c12ae71794d3a7382fcdec0
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f653dd30839eb4f573a7539e90b8a58ff9bedf2f
    Patch