Null Pointer Dereference Vulnerability in AMD Display Driver for Linux Kernel
CVE-2025-68286

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 16 December 2025

What is CVE-2025-68286?

A vulnerability in the AMD display driver within the Linux kernel allows for a null pointer dereference when using the IGT kms_cursor_legacy functionality. This issue can cause system instability when both an eDP panel and DP monitors are connected, leading to kernel panics during non-blocking modesets. Users may experience crashes as the system attempts to access an address that is not present, triggering serious operational issues.

Affected Version(s)

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 781f2f32e9c19eb791b52af283c96f9a9677a7f2

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 09092269cb762378ca8b56024746b1a136761e0d

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 109e9c92543f3105e8e1efd2c5e6b92ef55d5743

References

https://git.kernel.org/stable/c/781f2f32e9c19eb791b52af28...

https://git.kernel.org/stable/c/09092269cb762378ca8b56024...

https://git.kernel.org/stable/c/109e9c92543f3105e8e1efd2c...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 16, 2025
Vulnerability Reserved
Dec 16, 2025

JSON