Unrated severityNVD Advisory· Published Sep 18, 2025· Updated Jan 14, 2026

drm/mediatek: dp: Only trigger DRM HPD events if bridge is attached

CVE-2023-53389

Description

In the Linux kernel, the following vulnerability has been resolved:

The MediaTek DisplayPort interface bridge driver starts its interrupts as soon as its probed. However when the interrupts trigger the bridge might not have been attached to a DRM device. As drm_helper_hpd_irq_event() does not check whether the passed in drm_device is valid or not, a NULL pointer passed in results in a kernel NULL pointer dereference in it.

Check whether the bridge is attached and only trigger an HPD event if it is.

Affected products

Linux/drm/mediatek: dpllm-create
Linux/Linuxv5
Range: 6.1

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

git.kernel.org/stable/c/3551789d0635dfb2df8ab8e7fdbf0647e9c1724cmitre
git.kernel.org/stable/c/36b617f7e4ae663fcadd202ea061ca695ca75539mitre
git.kernel.org/stable/c/6524d3d58797975cc40b85be1e9b89721b4e8d0bmitre
git.kernel.org/stable/c/d1c04e338016ae2517c641806a831b1f3eee2bedmitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000