CVE-2023-53325

MEDIUM

Linux Kernel 6.1-6.1.55 6.5.5-6.5.* 6.6 - NULL Pointer Dereference in DRM Mediatek DP AUX Transfer

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: drm/mediatek: dp: Change logging to dev for mtk_dp_aux_transfer() Change logging from drm_{err,info}() to dev_{err,info}() in functions mtk_dp_aux_transfer() and mtk_dp_aux_do_transfer(): this will be essential to avoid getting NULL pointer kernel panics if any kind of error happens during AUX transfers happening before the bridge is attached. This may potentially start happening in a later commit implementing aux-bus support, as AUX transfers will be triggered from the panel driver (for EDID) before the mtk-dp bridge gets attached, and it's done in preparation for the same.

References (3)

Core 3

Core References

Patch

https://git.kernel.org/stable/c/4c743c1dd2ee2a72951660b6798d4d7f7674f87b

Patch

https://git.kernel.org/stable/c/7839f62294039959076dd06232e07aec7f7d5b2b

Patch

https://git.kernel.org/stable/c/fd70e2019bfbcb0ed90c5e23839bf510ce6acf8f

Scores

CVSS v3 5.5

EPSS 0.0013

EPSS Percentile 3.2%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-476

Status published

Products (9)

Linux/Linux < 6.1

Linux/Linux 6.1

Linux/Linux 6.1.55 - 6.1.*

Linux/Linux 6.5.5 - 6.5.*

Linux/Linux 6.6

Linux/Linux f70ac097a2cf5d4b67b2c1bbb73196c573ffcb7b - 4c743c1dd2ee2a72951660b6798d4d7f7674f87b

Linux/Linux f70ac097a2cf5d4b67b2c1bbb73196c573ffcb7b - 7839f62294039959076dd06232e07aec7f7d5b2b

Linux/Linux f70ac097a2cf5d4b67b2c1bbb73196c573ffcb7b - fd70e2019bfbcb0ed90c5e23839bf510ce6acf8f

linux/linux_kernel 6.1 - 6.1.55

Published Sep 16, 2025

Tracked Since Feb 18, 2026