CVE-2025-40360
drm/sysfb: Do not dereference NULL pointer in plane reset
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 0.2%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
16 Dec 2025Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
In the Linux kernel, the following vulnerability has been resolved:
drm/sysfb: Do not dereference NULL pointer in plane reset
The plane state in __drm_gem_reset_shadow_plane() can be NULL. Do not
deref that pointer, but forward NULL to the other plane-reset helpers.
Clears plane->state to NULL.
v2:
- fix typo in commit description (Javier)
Affected products
Linux · LinuxReferences
https://git.kernel.org/stable/c/14e02ed3876f4ab0ed6d3f41972175f8b8df3d70https://git.kernel.org/stable/c/6abeff03cb79a2c7f4554a8e8738acd35bb37152https://git.kernel.org/stable/c/6bdef5648a60e49d4a3b02461ab7ae3776877e77https://git.kernel.org/stable/c/b61ed8005bd3102510fab5015ac6a275c9c5ea16https://git.kernel.org/stable/c/c4faf7f417eea8b8d5cc570a1015736f307aa2d5https://git.kernel.org/stable/c/c7d5e69866bbe95c1e4ab4c10a81e0a02d9ea232