CVE-2025-71308

ANALYSIS PENDING

accel/amdxdna: Fix potential NULL pointer dereference in context cleanup

Title source: cna

Description

In the Linux kernel, the following vulnerability has been resolved: accel/amdxdna: Fix potential NULL pointer dereference in context cleanup aie_destroy_context() is invoked during error handling in aie2_create_context(). However, aie_destroy_context() assumes that the context's mailbox channel pointer is non-NULL. If mailbox channel creation fails, the pointer remains NULL and calling aie_destroy_context() can lead to a NULL pointer dereference. In aie2_create_context(), replace aie_destroy_context() with a function which request firmware to remove the context created previously.

References (2)

Core 2

Core References

https://git.kernel.org/stable/c/2611c9616cb52d3ed54a6095d72d18e645a6955a

https://git.kernel.org/stable/c/97f27573837ef96b4ba42af463cc800cab615c0e

Details

Status published

Products (6)

Linux/Linux < 6.14

Linux/Linux 6.14

Linux/Linux 6.19.4 - 6.19.*

Linux/Linux 7.0

Linux/Linux be462c97b7dfd24999babe39cce3de224ebe1f80 - 2611c9616cb52d3ed54a6095d72d18e645a6955a

Linux/Linux be462c97b7dfd24999babe39cce3de224ebe1f80 - 97f27573837ef96b4ba42af463cc800cab615c0e

Published May 27, 2026

Tracked Since May 27, 2026