GHSA-vqpv-2jr8-2hmpMediumCVSS 5.5
In the Linux kernel, the following vulnerability has been resolved: drm/panel: Fix a possible...
🔗 CVE IDs covered (1)
📋 Description
In the Linux kernel, the following vulnerability has been resolved:
drm/panel: Fix a possible null-pointer dereference in jdi_panel_dsi_remove()
In jdi_panel_dsi_remove(), jdi is explicitly checked, indicating that it may be NULL:
if (!jdi) mipi_dsi_detach(dsi);
However, when jdi is NULL, the function does not return and continues by calling jdi_panel_disable():
err = jdi_panel_disable(&jdi->base);
Inside jdi_panel_disable(), jdi is dereferenced unconditionally, which can lead to a NULL-pointer dereference:
struct jdi_panel *jdi = to_panel_jdi(panel); backlight_disable(jdi->backlight);
To prevent such a potential NULL-pointer dereference, return early from jdi_panel_dsi_remove() when jdi is NULL.
🔗 References (6)
- https://nvd.nist.gov/vuln/detail/CVE-2026-43300
- https://git.kernel.org/stable/c/2f5427d8726b22b807beec248d7d6bf88e291e0b
- https://git.kernel.org/stable/c/83ce0085fabf757b039322928188ad78e962d609
- https://git.kernel.org/stable/c/95eed73b871111123a8b1d31cb1fce7e902e49ea
- https://git.kernel.org/stable/c/ec2f37bbb733cdd7ed7d04171fca728a532414d5
- https://github.com/advisories/GHSA-vqpv-2jr8-2hmp