CVE-2025-71308

Published: Mag 27, 2026 Last Modified: Mag 27, 2026

ExploitDB:

Other exploit source:

Google Dorks:

Description

AI Translation Available

In the Linux kernel, the following vulnerability has been resolved:

accel/amdxdna: Fix potential NULL pointer dereference in context cleanup

aie_destroy_context() is invoked during error handling in
aie2_create_context(). However, aie_destroy_context() assumes that the
context's mailbox channel pointer is non-NULL. If mailbox channel
creation fails, the pointer remains NULL and calling aie_destroy_context()
can lead to a NULL pointer dereference.

In aie2_create_context(), replace aie_destroy_context() with a function
which request firmware to remove the context created previously.

https://git.kernel.org/stable/c/2611c9616cb52d3ed54a6095d72…

https://git.kernel.org/stable/c/2611c9616cb52d3ed54a6095d72d18e645a6955a

https://git.kernel.org/stable/c/97f27573837ef96b4ba42af463c…

https://git.kernel.org/stable/c/97f27573837ef96b4ba42af463cc800cab615c0e

CVE-2025-71308

Description

Iscriviti alla newsletter