๐Ÿ” CVE Alert

CVE-2026-53135

UNKNOWN 0.0

drm/amd/display: Fix NULL deref and buffer over-read in SDP debugfs

CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix NULL deref and buffer over-read in SDP debugfs [Why & How] dp_sdp_message_debugfs_write() dereferences connector->base.state->crtc without checking for NULL. A connector can be connected but not bound to any CRTC (e.g. after hot-plug before the next atomic commit), causing a kernel crash when writing to the sdp_message debugfs node. The function also ignores the user-provided size argument and always passes 36 bytes to copy_from_user(), reading past the user buffer when size < 36. Fix both issues by: - Returning -ENODEV when connector->base.state or state->crtc is NULL - Clamping write_size to min(size, sizeof(data)) (cherry picked from commit 6ab4c36a522842ff70474a1c0af2e40e50fc8300)

Vendor linux
Product linux
Ecosystems
Industries
Technology
Published Jun 25, 2026
Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new unknown vulnerabilities affecting linux linux are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

Affected Versions

Linux / Linux
c7ba3653e9773256b2b08508a2ed2ca28ea7566b < ee9cfcf77a8e8af637396dc00966df5f701e661c c7ba3653e9773256b2b08508a2ed2ca28ea7566b < b781f90a9528555c709e59789550893581ef0be4 c7ba3653e9773256b2b08508a2ed2ca28ea7566b < a2de1d71891a038a9346b2c1a72b88c8350f2479 c7ba3653e9773256b2b08508a2ed2ca28ea7566b < 7fc4fab4acc307ad2903312c195872b2953d32c3 c7ba3653e9773256b2b08508a2ed2ca28ea7566b < 7ae95c0275c330b5dbae806f8e431720edad776f c7ba3653e9773256b2b08508a2ed2ca28ea7566b < bb6f705b73b5f191f14ad004e2c8c4b615806187 c7ba3653e9773256b2b08508a2ed2ca28ea7566b < c90954cdea4d6998ec345de0d840d030c145b89e c7ba3653e9773256b2b08508a2ed2ca28ea7566b < adf67034b1f61f7119295208085bfd43f85f56af
Linux / Linux
5.2

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
git.kernel.org: https://git.kernel.org/stable/c/ee9cfcf77a8e8af637396dc00966df5f701e661c git.kernel.org: https://git.kernel.org/stable/c/b781f90a9528555c709e59789550893581ef0be4 git.kernel.org: https://git.kernel.org/stable/c/a2de1d71891a038a9346b2c1a72b88c8350f2479 git.kernel.org: https://git.kernel.org/stable/c/7fc4fab4acc307ad2903312c195872b2953d32c3 git.kernel.org: https://git.kernel.org/stable/c/7ae95c0275c330b5dbae806f8e431720edad776f git.kernel.org: https://git.kernel.org/stable/c/bb6f705b73b5f191f14ad004e2c8c4b615806187 git.kernel.org: https://git.kernel.org/stable/c/c90954cdea4d6998ec345de0d840d030c145b89e git.kernel.org: https://git.kernel.org/stable/c/adf67034b1f61f7119295208085bfd43f85f56af