CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

CVE-2025-38205: drm/amd/display: Avoid divide by zero by initializing dummy pitch to 1

Description

In the Linux kernel, the following vulnerability has been resolved:

drm/amd/display: Avoid divide by zero by initializing dummy pitch to 1

[Why]
If the dummy values in `populate_dummy_dml_surface_cfg()` aren't updated
then they can lead to a divide by zero in downstream callers like
CalculateVMAndRowBytes()

[How]
Initialize dummy value to a value to avoid divide by zero.

Classification

CVE ID: CVE-2025-38205

Affected Products

Vendor: Linux

Product: Linux

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.02% (probability of being exploited)

EPSS Percentile: 3.04% (scored less or equal to compared to others)

EPSS Date: 2025-07-06 (when was this score calculated)

References

https://nvd.nist.gov/vuln/detail/CVE-2025-38205
https://git.kernel.org/stable/c/8044f981b2cf8c32fe1bd5d1fc991552cdf7ffe0
https://git.kernel.org/stable/c/7e40f64896e8e3dca471e287672db5ace12ea0be

Timeline

2025-07-04 14:40:20 UTC
CVE

drm/amd/display: Avoid divide by zero by initializing dummy pitch to 1