CVE-2025-39820 — Vulnetix

Try Vulnetix Request Demo

CVE-2025-39820 PUBLISHED CVSS 5.5 MEDIUM

In the Linux kernel, the following vulnerability has been resolved: drm/msm/dpu: Add a null ptr check for dpu_encoder_needs_modeset The drm_atomic_get_new_connector_state() can return NULL if the connector is not part of the atomic state. Add a check to prevent a NULL pointer dereference. This follows the same pattern used in dpu_encoder_update_topology() within the same file, which checks for NULL before using conn_state. Patchwork: https://patchwork.freedesktop.org/patch/665188/

EPSS 0.02% · 4.7th percentile

Risk Scores

CVSS v3.1

5.5

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS Score

0.02%

4.7th percentile

Affected Products

Vendor	Product	Versions
Linux	Linux	1ce69c265a53c61c5c29f97f542ff89af3f3d7e7, 1ce69c265a53c61c5c29f97f542ff89af3f3d7e7, 6.15
linux	linux_kernel	6.15, 6.15, 6.15

Timeline

Jan 21, 1970 Security Advisory
Sep 16, 2025 CVE Published
Sep 16, 2025 PoC Published
Sep 17, 2025 EPSS Score
Sep 22, 2025 Coalition ESS Score
Sep 24, 2025 EPSS Score
Sep 27, 2025 Coalition ESS Score
Sep 30, 2025 EPSS Score
Oct 7, 2025 EPSS Score
Oct 13, 2025 EPSS Score
Oct 19, 2025 Coalition ESS Score
Oct 20, 2025 EPSS Score

References

Open in Interactive Console →