CVE-2025-38630

by Fred · 22/08/2025

In the Linux kernel, the following vulnerability has been resolved:

fbdev: imxfb: Check fb_add_videomode to prevent null-ptr-deref

fb_add_videomode() can fail with -ENOMEM when its internal kmalloc() cannot
allocate a struct fb_modelist. If that happens, the modelist stays empty but
the driver continues to register. Add a check for its return value to prevent
poteintial null-ptr-deref, which is similar to the commit 17186f1f90d3 (“fbdev:
Fix do_register_framebuffer to prevent null-ptr-deref in fb_videomode_to_var”).

More information : https://git.kernel.org/stable/c/40f0a51f6c54d46a94b9f1180339ede7ca7ee190

CVE-2025-38630

Similar

Recent Posts

Categories

CVE-2025-38630

Share this:

Similar

Recent Posts

Categories

Tags