Description
In the Linux kernel, the following vulnerability has been resolved:

drm/amdgpu: fix NULL pointer issue buffer funcs

If SDMA block not enabled, buffer_funcs will not initialize,
fix the null pointer issue if buffer_funcs not initialized.
Published: 2026-05-06
Score: 5.5 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A null pointer dereference can occur in the AMDGPU DRM driver when the SDMA block is not enabled and the buffer_funcs structure is not initialized. This flaw is a classic instance of an uninitialized pointer leading to undefined behavior, which in kernel code can produce instability or a crash.

Affected Systems

All Linux kernel builds that include the AMDGPU DRM driver with the SDMA block disabled are potentially affected. Any kernel version that contains the code path prior to the patch that fixes the uninitialized pointer should be regarded as vulnerable. This spans all major distributions that ship the upstream kernel or its derivatives.

Risk and Exploitability

The EPSS score is reported as < 1%, indicating a very low likelihood of exploitation, and the vulnerability is not listed in the CISA KEV catalog, implying no known active exploits. The CVSS score of 5.5 denotes moderate severity. Explicit attack vectors, privilege requirements, or remote exploitation capabilities are not detailed in the available data, so the risk assessment relies on the generic moderate severity and low exploitation probability.

Generated by OpenCVE AI on May 12, 2026 at 23:01 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply a kernel update that includes the AMDGPU null-pointer fix
  • If an update is not immediately possible, reconfigure the kernel to disable the SDMA block (CONFIG_DRM_AMDGPU_SDMA=n) or temporarily unload the amdgpu module to avoid the uninitialized pointer usage
  • Keep abreast of vendor advisories and apply any future patches or bulletins as they become available

Generated by OpenCVE AI on May 12, 2026 at 23:01 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 12 May 2026 21:30:00 +0000

Type Values Removed Values Added
Weaknesses CWE-476
Metrics cvssV3_1

{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H'}

Thu, 07 May 2026 00:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-824
References

Wed, 06 May 2026 12:15:00 +0000

Type Values Removed Values Added
Description In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix NULL pointer issue buffer funcs If SDMA block not enabled, buffer_funcs will not initialize, fix the null pointer issue if buffer_funcs not initialized.
Title drm/amdgpu: fix NULL pointer issue buffer funcs
First Time appeared Linux
Linux linux Kernel
CPEs cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Vendors & Products Linux
Linux linux Kernel
References

Subscriptions

Linux Linux Kernel
cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published:

Updated: 2026-05-11T21:57:25.049Z

Reserved: 2026-05-06T11:31:45.510Z

Link: CVE-2025-71294

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2026-05-06T12:16:28.707

Modified: 2026-05-12T21:22:32.903

Link: CVE-2025-71294

cve-icon Redhat

Severity :

Publid Date: 2026-05-06T00:00:00Z

Links: CVE-2025-71294 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-05-12T23:15:27Z

Weaknesses