CVE-2026-43300

MEDIUM(5.5)

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Risk Signal Score14/100 — NIEDRIG

CVSS 5.5 — Mittel

EPSS-Score

Exploit-Wahrscheinlichkeit (30 Tage)

CVSS Score

5.5

Technische Schwere

Beschreibung

In the Linux kernel, the following vulnerability has been resolved: drm/panel: Fix a possible null-pointer dereference in jdi_panel_dsi_remove() In jdi_panel_dsi_remove(), jdi is explicitly checked, indicating that it may be NULL: if (!jdi) mipi_dsi_detach(dsi); However, when jdi is NULL, the function does not return and continues by calling jdi_panel_disable(): err = jdi_panel_disable(&jdi->base); Inside jdi_panel_disable(), jdi is dereferenced unconditionally, which can lead to a NULL-pointer dereference: struct jdi_panel *jdi = to_panel_jdi(panel); backlight_disable(jdi->backlight); To prevent such a potential NULL-pointer dereference, return early from jdi_panel_dsi_remove() when jdi is NULL.

Referenzen

https://git.kernel.org/stable/c/2f5427d8726b22b807beec248d7d6bf88e291e0b
https://git.kernel.org/stable/c/83ce0085fabf757b039322928188ad78e962d609
https://git.kernel.org/stable/c/95eed73b871111123a8b1d31cb1fce7e902e49ea
https://git.kernel.org/stable/c/ec2f37bbb733cdd7ed7d04171fca728a532414d5