DisplayPort Alt Mode Vulnerability in Linux Kernel by Linux Foundation
CVE-2025-38391

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 25 July 2025

What is CVE-2025-38391?

A vulnerability has been identified in the Linux kernel's DisplayPort Alt Mode implementation, where a flawed port partner can incorrectly declare unsupported pin assignments. This misrepresentation can lead to a BRK exception due to out-of-bounds access when the pin_assignment_show function is called. This issue has been addressed by implementing a safeguard that ensures loop conditions are checked against the maximum allowed values, preventing invalid pin assignment access and enhancing system stability.

Affected Version(s)

Linux 0e3bb7d6894d9b6e67d6382bb03a46a1dc989588

Linux 0e3bb7d6894d9b6e67d6382bb03a46a1dc989588 < 114a977e0f6bf278e05eade055e13fc271f69cf7

Linux 0e3bb7d6894d9b6e67d6382bb03a46a1dc989588 < 621d5a3ef0231ab242f2d31eecec40c38ca609c5

References

https://git.kernel.org/stable/c/c93bc959788ed9a1af7df57cb...

https://git.kernel.org/stable/c/114a977e0f6bf278e05eade05...

https://git.kernel.org/stable/c/621d5a3ef0231ab242f2d31ee...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 25, 2025
Vulnerability Reserved
Apr 16, 2025