2422694 – (CVE-2025-68228) CVE-2025-68228 kernel: drm/plane: Fix create_in_format_blob() return value

Bug 2422694 (CVE-2025-68228) - CVE-2025-68228 kernel: drm/plane: Fix create_in_format_blob() return value

Summary: CVE-2025-68228 kernel: drm/plane: Fix create_in_format_blob() return value

Keywords:
Status:	NEW
Alias:	CVE-2025-68228
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	low
Severity:	low
Target Milestone:	---
Assignee:	Product Security DevOps Team
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2025-12-16 14:04 UTC by OSIDB Bzimport
Modified:	2025-12-17 02:32 UTC (History)
CC List:	0 users
Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description OSIDB Bzimport 2025-12-16 14:04:19 UTC

In the Linux kernel, the following vulnerability has been resolved:

drm/plane: Fix create_in_format_blob() return value

create_in_format_blob() is either supposed to return a valid
pointer or an error, but never NULL. The caller will dereference
the blob when it is not an error, and thus will oops if NULL
returned. Return proper error values in the failure cases.

Comment 1 Alexander B 2025-12-17 02:29:18 UTC

Upstream advisory:
https://lore.kernel.org/linux-cve-announce/2025121635-CVE-2025-68228-43e1@gregkh/T

Note You need to log in before you can comment on or make changes to this bug.