CVE-2025-21940

Published: Apr 1, 2025

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Fix NULL Pointer Dereference in KFD queue Through KFD IOCTL Fuzzing we encountered a NULL pointer derefrence when calling kfd_queue_acquire_buffers. (cherry picked from commit 049e5bf3c8406f87c3d8e1958e0a16804fa1d530)

Vendor	Product	Versions
Linux	Linux	affected `629568d25fea8ece4f65073f039aeef4e240ab67 - < c3cbeafb4e0001d9146df50b470885e02664f3c7` affected `629568d25fea8ece4f65073f039aeef4e240ab67 - < 33eb8041c5d6c19d46e7bfd23a031844336afd80` affected `629568d25fea8ece4f65073f039aeef4e240ab67 - < fd617ea3b79d2116d53f76cdb5a3601c0ba6e42f`
Linux	Linux	affected `6.12` unaffected `0 - < 6.12` unaffected `6.12.19 - <= 6.12.` unaffected `6.13.7 - <= 6.13.` unaffected `6.14 - <= *`

References

https://git.kernel.org/stable/c/c3cbeafb4e0001d9146df50b470885e02664f3c7

https://git.kernel.org/stable/c/33eb8041c5d6c19d46e7bfd23a031844336afd80

https://git.kernel.org/stable/c/fd617ea3b79d2116d53f76cdb5a3601c0ba6e42f

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-21940

Description

Affected Products

References