Linux kernel: DRM MSM DPU NULL ptr deref via missing pingpong check
CVE-2025-71138 Published on January 14, 2026
drm/msm/dpu: Add missing NULL pointer check for pingpong interface
In the Linux kernel, the following vulnerability has been resolved:
drm/msm/dpu: Add missing NULL pointer check for pingpong interface
It is checked almost always in dpu_encoder_phys_wb_setup_ctl(), but in a
single place the check is missing.
Also use convenient locals instead of phys_enc->* where available.
Patchwork: https://patchwork.freedesktop.org/patch/693860/
Products Associated with CVE-2025-71138
Want to know whenever a new CVE is published for Linux Kernel? stack.watch will email you.
Affected Versions
Linux:- Version d7d0e73f7de33a2b9998b607707a3e944ef3b86d and below 678d1c86566dfbb247ba25482d37fddde6140cc9 is affected.
- Version d7d0e73f7de33a2b9998b607707a3e944ef3b86d and below 471baae774a30a04cf066907b60eaf3732928cb7 is affected.
- Version d7d0e73f7de33a2b9998b607707a3e944ef3b86d and below 35ea3282136a630a3fd92b76f5a3a02651145ef1 is affected.
- Version d7d0e73f7de33a2b9998b607707a3e944ef3b86d and below 88733a0b64872357e5ecd82b7488121503cb9cc6 is affected.
- Version 5.19 is affected.
- Before 5.19 is unaffected.
- Version 6.6.120, <= 6.6.* is unaffected.
- Version 6.12.64, <= 6.12.* is unaffected.
- Version 6.18.4, <= 6.18.* is unaffected.
- Version 6.19, <= * is unaffected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.