Description
In the Linux kernel, the following vulnerability has been resolved:

drm/panthor: Fix NULL pointer dereference on panthor_fw_unplug

This patch removes the MCU halt and wait for halt procedures during
panthor_fw_unplug() as the MCU can be in a variety of states or the FW
may not even be loaded/initialized at all, the latter of which can lead
to a NULL pointer dereference.

It should be safe on unplug to just disable the MCU without waiting for
it to halt as it may not be able to.
Published: 2026-05-27
Score: n/a
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability is a null pointer dereference in the Panthor DRM driver during the panthor_fw_unplug() routine. If a device is removed or the firmware is not loaded, the driver may attempt to dereference a pointer that is not initialized, causing the kernel to crash. This leads to a loss of system availability.

Affected Systems

The issue exists in the Linux kernel’s DRM Panthor driver, which is built into all distributions that provide that driver. All kernel releases that ship the Panthor driver are potentially affected until the patch is applied.

Risk and Exploitability

There is no CVSS score or EPSS data available, and the vulnerability is not listed in CISA’s KEV catalog. The likely attack vector is local; an attacker would need to trigger an unplug event or force a power cycle of the device while the kernel is running. Because the fault occurs in kernel space, the exploit can cause a system crash, which is highly disruptive but does not provide direct code execution to a remote adversary.

Generated by OpenCVE AI on May 27, 2026 at 16:14 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply a kernel update that includes commit 920c6af98e, which removes the null pointer dereference in panthor_fw_unplug().
  • Reboot the system so the updated driver and firmware are loaded correctly.
  • If a kernel update is not immediately possible, avoid unplugging Panthor devices while the system is running or disable hotplug for those devices until the patch is available.

Generated by OpenCVE AI on May 27, 2026 at 16:14 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 27 May 2026 16:30:00 +0000

Type Values Removed Values Added
Weaknesses CWE-476

Wed, 27 May 2026 14:15:00 +0000

Type Values Removed Values Added
Description In the Linux kernel, the following vulnerability has been resolved: drm/panthor: Fix NULL pointer dereference on panthor_fw_unplug This patch removes the MCU halt and wait for halt procedures during panthor_fw_unplug() as the MCU can be in a variety of states or the FW may not even be loaded/initialized at all, the latter of which can lead to a NULL pointer dereference. It should be safe on unplug to just disable the MCU without waiting for it to halt as it may not be able to.
Title drm/panthor: Fix NULL pointer dereference on panthor_fw_unplug
First Time appeared Linux
Linux linux Kernel
CPEs cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Vendors & Products Linux
Linux linux Kernel
References

Subscriptions

Linux Linux Kernel
cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published:

Updated: 2026-05-27T12:14:59.693Z

Reserved: 2026-05-08T13:14:33.088Z

Link: CVE-2025-71307

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-05-27T14:16:43.283

Modified: 2026-05-27T14:48:31.480

Link: CVE-2025-71307

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-27T16:15:05Z

Weaknesses