Wiz
Vulnerability DatabaseCVE-2025-38362

CVE-2025-38362
Linux Kernel vulnerability analysis and mitigation

Overview

CVE-2025-38362 is a vulnerability discovered in the Linux kernel's AMD display driver component, specifically in the drm/amd/display subsystem. The vulnerability was disclosed on July 25, 2025, and affects the handling of display list checks in the HDCP encryption functionality (NVD, Red Hat).

Technical details

The vulnerability stems from a missing null pointer check in the modhdcphdcp1enableencryption() function when it calls getfirstactivedisplay(). When the display list is empty, getfirstactivedisplay() returns a null pointer, which is not properly validated, leading to a null pointer dereference in modhdcphdcp2enableencryption(). The vulnerability has been assigned a CVSS v3.1 base score of 5.5 with the vector string CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H, indicating a moderate severity level (Red Hat).

Impact

The vulnerability can lead to a null pointer dereference in the kernel's AMD display driver, potentially causing system crashes or denial of service conditions when the HDCP encryption functionality is utilized with an empty display list (NVD).

Mitigation and workarounds

The fix involves adding a null pointer check for getfirstactivedisplay() and returning MODHDCPSTATUSDISPLAYNOTFOUND if the function returns null. This patch has been implemented in the Linux kernel (NVD).

Additional resources

SourceThis report was generated using AI

Related Linux Kernel vulnerabilities:

CVE ID

Severity

Score

Technologies

Component name

CISA KEV exploit

Has fix

Published date

CVE-2025-40344N/AN/A
  • Linux KernelLinux Kernel
  • kernel-debug-modules-internal
NoYesDec 09, 2025
CVE-2025-40343N/AN/A
  • Linux KernelLinux Kernel
  • kernel-64k-debug-devel
NoYesDec 09, 2025
CVE-2025-40342N/AN/A
  • Linux KernelLinux Kernel
  • kernel-64k-debug-devel-matched
NoYesDec 09, 2025
CVE-2025-40341N/AN/A
  • Linux KernelLinux Kernel
  • kernel-rt-64k-debug-modules-extra
NoYesDec 09, 2025
CVE-2025-40340N/AN/A
  • Linux KernelLinux Kernel
  • kernel-rt-64k-debug-kvm
NoYesDec 09, 2025

Free Vulnerability Assessment

Benchmark your Cloud Security Posture

Evaluate your cloud security practices across 9 security domains to benchmark your risk level and identify gaps in your defenses.

Request assessment

Additional Wiz resources

Cloud Vulnerability DB

Cloud Vulnerability DB

A community-led vulnerabilities database

Cloud Threat Landscape

Cloud Threat Landscape

A threat intelligence database

PEACH

PEACH

A tenant isolation framework

Get a personalized demo

Ready to see Wiz in action?

"Best User Experience I have ever seen, provides full visibility to cloud workloads."
David EstlickCISO
"Wiz provides a single pane of glass to see what is going on in our cloud environments."
Adam FletcherChief Security Officer
"We know that if Wiz identifies something as critical, it actually is."
Greg PoniatowskiHead of Threat and Vulnerability Management
Get a demo