CVE-2025-21940
MEDIUMLinux Kernel 6.12-6.12.18, 6.13-6.13.6 - NULL Pointer Dereference in KFD Queue
Title source: llmDescription
In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Fix NULL Pointer Dereference in KFD queue Through KFD IOCTL Fuzzing we encountered a NULL pointer derefrence when calling kfd_queue_acquire_buffers. (cherry picked from commit 049e5bf3c8406f87c3d8e1958e0a16804fa1d530)
References (3)
Core 3
Scores
CVSS v3
5.5
EPSS
0.0018
EPSS Percentile
7.1%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-476
Status
published
Products (12)
linux/Kernel
6.12.0 - 6.12.19linux
linux/Kernel
6.13.0 - 6.13.7linux
Linux/Linux
< 6.12
Linux/Linux
6.12
Linux/Linux
6.12.19 - 6.12.*
Linux/Linux
6.13.7 - 6.13.*
Linux/Linux
6.14
Linux/Linux
629568d25fea8ece4f65073f039aeef4e240ab67 - 33eb8041c5d6c19d46e7bfd23a031844336afd80
Linux/Linux
629568d25fea8ece4f65073f039aeef4e240ab67 - c3cbeafb4e0001d9146df50b470885e02664f3c7
Linux/Linux
629568d25fea8ece4f65073f039aeef4e240ab67 - fd617ea3b79d2116d53f76cdb5a3601c0ba6e42f
... and 2 more
Published
Apr 01, 2025
Tracked Since
Feb 18, 2026