2429107 – (CVE-2025-71083) CVE-2025-71083 kernel: Kernel: Denial of Service via NULL pointer dereference in drm/ttm

Bug 2429107 (CVE-2025-71083) - CVE-2025-71083 kernel: Kernel: Denial of Service via NULL pointer dereference in drm/ttm

Summary: CVE-2025-71083 kernel: Kernel: Denial of Service via NULL pointer dereference...

Keywords:
Status:	NEW
Alias:	CVE-2025-71083
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Product Security DevOps Team
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2026-01-13 16:07 UTC by OSIDB Bzimport
Modified:	2026-01-15 14:40 UTC (History)
CC List:	0 users
Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description OSIDB Bzimport 2026-01-13 16:07:12 UTC

In the Linux kernel, the following vulnerability has been resolved:

drm/ttm: Avoid NULL pointer deref for evicted BOs

It is possible for a BO to exist that is not currently associated with a
resource, e.g. because it has been evicted.

When devcoredump tries to read the contents of all BOs for dumping, we need
to expect this as well -- in this case, ENODATA is recorded instead of the
buffer contents.

Comment 1 Jon Moroney 2026-01-14 22:52:49 UTC

Upstream advisory:
https://lore.kernel.org/linux-cve-announce/2026011339-CVE-2025-71083-ddb3@gregkh/T

Note You need to log in before you can comment on or make changes to this bug.