Description

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix out-of-bound accesses [WHAT & HOW] hpo_stream_to_link_encoder_mapping has size MAX_HPO_DP2_ENCODERS(=4), but location can have size up to 6. As a result, it is necessary to check location against MAX_HPO_DP2_ENCODERS. Similiarly, disp_cfg_stream_location can be used as an array index which should be 0..5, so the ASSERT's conditions should be less without equal.

INFO

Published Date :

2025-04-01T15:47:12.103Z

Last Modified :

2025-07-11T17:21:39.855Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2025-21985 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-21985.

URL Resource
https://git.kernel.org/stable/c/36793d90d76f667d26c6dd025571481ee0c96abc cve-icon cve-icon
https://git.kernel.org/stable/c/8adbb2a98b00926315fd513b5fe2596b5716b82d cve-icon cve-icon
https://git.kernel.org/stable/c/9aedc776b11038f04f4641241bb7e877781e4aa4 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025040149-CVE-2025-21985-435c@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2025-21985 cve-icon
https://www.cve.org/CVERecord?id=CVE-2025-21985 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact