CVE-2025-38098
Unknown
Unknown - Not Provided
BaseFortify
Publication date: 2025-07-03
Last updated on: 2025-11-20
Assigner: kernel.org
Description
Description
In the Linux kernel, the following vulnerability has been resolved:
drm/amd/display: Don't treat wb connector as physical in create_validate_stream_for_sink
Don't try to operate on a drm_wb_connector as an amdgpu_dm_connector.
While dereferencing aconnector->base will "work" it's wrong and
might lead to unknown bad things. Just... don't.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| linux | linux_kernel | From 5.15.160 (inc) to 5.16 (inc) |
| linux | linux_kernel | From 5.15.160 (inc) to 5.16 (inc) |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-NVD-CWE-noinfo |
Attack-Flow Graph
AI Powered Q&A
How can this vulnerability impact me? :
The vulnerability may cause unknown bad effects due to improper handling of the connector type in the AMD display driver, potentially leading to system instability or unexpected behavior when managing display outputs.
Can you explain this vulnerability to me?
This vulnerability involves the Linux kernel's AMD display driver where a writeback (wb) connector is incorrectly treated as a physical AMD GPU display manager connector. Operating on a drm_wb_connector as if it were an amdgpu_dm_connector is incorrect and can lead to unpredictable or harmful behavior.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70