CVE-2025-21956

01.04.2025, 16:15

In the Linux kernel, the following vulnerability has been resolved:

drm/amd/display: Assign normalized_pix_clk when color depth = 14

[WHY & HOW]
A warning message "WARNING: CPU: 4 PID: 459 at ... /dc_resource.c:3397
calculate_phy_pix_clks+0xef/0x100 [amdgpu]" occurs because the
display_color_depth == COLOR_DEPTH_141414 is not handled. This is
observed in Radeon RX 6600 XT.

It is fixed by assigning pix_clk * (14 * 3) / 24 - same as the rests.

Also fixes the indentation in get_norm_pix_clk.

(cherry picked from commit 274a87eb389f58eddcbc5659ab0b180b37e92775)

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	UNKNOWN				---
Linux	CNA	---				---

Awaiting analysis

This vulnerability is currently awaiting analysis.

Base Score

CVSS 3.x

EPSS Score

Percentile: 15%

Debian Releases

Debian Product

Codename

linux

bullseye	vulnerable
bullseye (security)	5.10.237-1 fixed
bookworm	6.1.137-1 fixed
bookworm (security)	6.1.140-1 fixed
trixie	6.12.27-1 fixed
sid	6.12.30-1 fixed

linux-6.1

bullseye (security)

6.1.137-1~deb11u1

fixed

Vulnerability Media Exposure

[GERMAN] Linux Kernel: Mehrere Schwachstellen
Ein Angreifer kann mehrere Schwachstellen in Linux Kernel ausnutzen, um einen Denial-of-Service auszulösen und um nicht näher spezifizierte Auswirkungen zu erzielen.
Published: 2025-04-01T22:00:00+00:00

References

https://git.kernel.org/stable/c/0174a2e5770efee9dbd4b58963ed4d939298ff5e

https://git.kernel.org/stable/c/04f90b505ad3a6eed474bbaa03167095fef5203a

https://git.kernel.org/stable/c/0c0016712e5dc23ce4a7e673cbebc24a535d8c8a

https://git.kernel.org/stable/c/27df30106690969f7d63604f0d49ed8e9bffa2cb

https://git.kernel.org/stable/c/79e31396fdd7037c503e6add15af7cb00633ea92

https://git.kernel.org/stable/c/a8f77e1658d78e4a8bb227a83bcee67de97f7634

https://git.kernel.org/stable/c/cca3ab74f90176099b6392e8e894b52b27b3d080

https://git.kernel.org/stable/c/dc831b38680c47d07e425871a9852109183895cf