drm/plane: Fix create_in_format_blob() return value
CVE-2025-68228

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
16 December 2025

What is CVE-2025-68228?

In the Linux kernel, the following vulnerability has been resolved:

drm/plane: Fix create_in_format_blob() return value

create_in_format_blob() is either supposed to return a valid pointer or an error, but never NULL. The caller will dereference the blob when it is not an error, and thus will oops if NULL returned. Return proper error values in the failure cases.

Affected Version(s)

Linux 0d6dcd741c266389bbf0a8758f537b3a171ac32a < 860f93f4fce1e733b8a2474f6bfa153243d775f3

Linux 0d6dcd741c266389bbf0a8758f537b3a171ac32a

Linux 6.16

References

https://git.kernel.org/stable/c/860f93f4fce1e733b8a2474f6...
https://git.kernel.org/stable/c/cead55e24cf9e092890cf51c0...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.
CVE-2025-68228 : Null Pointer Dereference in Linux Kernel's DRM Subsystem