CVE-2026-46215 drm: Set old handle to NULL before prime swap in change_handle

In the Linux kernel, the following vulnerability has been resolved: drm: Set old handle to NULL before prime swap in changehandle There was a potential race condition in changehandle. The ioctl briefly had a single object with two idr entries; a concurrent gemclose could delete the object and...

CVE-2025-68228 drm/plane: Fix create_in_format_blob() return value

In the Linux kernel, the following vulnerability has been resolved: drm/plane: Fix createinformatblob return value createinformatblob is either supposed to return a valid pointer or an error, but never NULL. The caller will dereference the blob when it is not an error, and thus will oops if NULL...

CVE-2025-68189 drm/msm: Fix GEM free for imported dma-bufs

In the Linux kernel, the following vulnerability has been resolved: drm/msm: Fix GEM free for imported dma-bufs Imported dma-bufs also have obj-resv != &obj-resv. So we should check both this condition in addition to flags for handling the NOSHARE case. Fixes this splat that was reported with IRI...

Linux Distros Unpatched Vulnerability : CVE-2023-53370

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drm/amdgpu: fix memory leak in mes self test The fences associated with mes queue have to be freed up during amdgpuringfini. CVE-2023-53370 Note that Nessus...

Linux Distros Unpatched Vulnerability : CVE-2022-50412

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drm: bridge: adv7511: unregister cec i2c device after cec adapter cecunregisteradapter assumes that the underlying adapter ops are callable. For example, if the...

CVE-2025-39747

Technical details about CVE-2025-39747 are not publicly provided in the supplied documents. Monitoring for updates from OSV/Root feeds is advised; no concrete affected products, root cause, or patch details are present here.

RHEL 9 : kernel (RHSA-2025:15668)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:15668 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: net/iucv: Avoid explicit...

Linux Distros Unpatched Vulnerability : CVE-2023-53085

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: drm/edid: fix info leak when failing to get panel id Make sure to clear the transfer buffer...

CVE-2025-38449

In the Linux kernel, the following vulnerability has been resolved: drm/gem: Acquire references on GEM handles for framebuffers A GEM handle can be released while the GEM buffer object is attached to a DRM framebuffer. This leads to the release of the dma-buf backing the buffer object, if any. 1...

CVE-2022-50068

In the Linux kernel, the following vulnerability has been resolved: drm/ttm: Fix dummy res NULL ptr deref bug Check the bo-resource value before accessing the resource memtype. v2: Fix commit description unwrapped warning 40.191227 T184 general protection fault, probably for non-canonical address...

kernel: drm: nv04: Fix out of bounds access

A flaw was found in the Linux kernel’s nouveau module. An out-of-bounds access issue can be triggered when the Output Resource is zero, resulting in a denial of service...

CVE-2023-53095 drm/ttm: Fix a NULL pointer dereference

In the Linux kernel, the following vulnerability has been resolved: drm/ttm: Fix a NULL pointer dereference The LRU mechanism may look up a resource in the process of being removed from an object. The locking rules here are a bit unclear but it looks currently like res-bo assignment is protected ...

CVE-2025-21940 drm/amdkfd: Fix NULL Pointer Dereference in KFD queue

In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Fix NULL Pointer Dereference in KFD queue Through KFD IOCTL Fuzzing we encountered a NULL pointer derefrence when calling kfdqueueacquirebuffers. cherry picked from commit 049e5bf3c8406f87c3d8e1958e0a16804fa1d530...

CVE-2023-53001

Removed by vendor...

CVE-2022-49336 drm/etnaviv: check for reaped mapping in etnaviv_iommu_unmap_gem

In the Linux kernel, the following vulnerability has been resolved: drm/etnaviv: check for reaped mapping in etnaviviommuunmapgem When the mapping is already reaped the unmap must be a no-op, as we would otherwise try to remove the mapping twice, corrupting the involved data structures...

CVE-2022-49233

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Call dcstreamrelease for remove link enc assignment Why A porting error resulted in the stream assignment for the link being retained without being released - a memory leak. How Fix the porting error by adding ba...

CVE-2025-21688

In the Linux kernel, the following vulnerability has been resolved: drm/v3d: Assign job pointer to NULL before signaling the fence In commit e4b5ccd392b9 "drm/v3d: Ensure job pointer is set to NULL after job completion", we introduced a change to assign the job pointer to NULL after completing a...

SUSE CVE-2022-48852

In the Linux kernel, the following vulnerability has been resolved: drm/vc4: hdmi: Unregister codec device on unbind On bind we will register the HDMI codec device but we don't unregister it on unbind, leading to a device leakage. Unregister our device at unbind...

DEBIAN-CVE-2024-40916

In the Linux kernel, the following vulnerability has been resolved: drm/exynos: hdmi: report safe 640x480 mode as a fallback when no EDID found When reading EDID fails and driver reports no modes available, the DRM core adds an artificial 1024x786 mode to the connector. Unfortunately some variant...

CVE-2024-22386 Race condition vulnerability in Linux kernel drm/exynos exynos_drm_crtc_atomic_disable

A race condition was found in the Linux kernel's drm/exynos device driver in exynosdrmcrtcatomicdisable function. This can result in a null pointer dereference issue, possibly leading to a kernel panic or denial of service issue...