CVE-2025-39675

drm/amd/display: Add null pointer check in mod_hdcp_hdcp1_create_session()

Description

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Add null pointer check in mod_hdcp_hdcp1_create_session() The function mod_hdcp_hdcp1_create_session() calls the function get_first_active_display(), but does not check its return value. The return value is a null pointer if the display list is empty. This will lead to a null pointer dereference. Add a null pointer check for get_first_active_display() and return MOD_HDCP_STATUS_DISPLAY_NOT_FOUND if the function return null. This is similar to the commit c3e9826a2202 ("drm/amd/display: Add null pointer check for get_first_active_display()"). (cherry picked from commit 5e43eb3cd731649c4f8b9134f857be62a416c893)

INFO

Published Date :

2025-09-05T17:20:41.179Z

Last Modified :

2025-09-05T17:20:41.179Z

Source :

Linux

AFFECTED PRODUCTS

The following products are affected by CVE-2025-39675 vulnerability.

Vendors	Products
Linux	Linux Kernel

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-39675.

URL	Resource
https://git.kernel.org/stable/c/2af45aadb7b5d3852c76e2d1e985289ada6f48bf
https://git.kernel.org/stable/c/2ee86b764c54e0d6a5464fb023b630fdf20869cd
https://git.kernel.org/stable/c/7a2ca2ea64b1b63c8baa94a8f5deb70b2248d119
https://git.kernel.org/stable/c/857b8387a9777e42b36e0400be99b54c251eaf9a
https://git.kernel.org/stable/c/97fc94c5fd3c6ac5a13e457d38ee247737b8c4bd
https://git.kernel.org/stable/c/ee0373b20bb67b1f00a1b25ccd24c8ac996b6446
https://lore.kernel.org/linux-cve-announce/2025090544-CVE-2025-39675-bd21@gregkh/T
https://nvd.nist.gov/vuln/detail/CVE-2025-39675
https://www.cve.org/CVERecord?id=CVE-2025-39675

CVSS Vulnerability Scoring System

V3.1

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact