CVE-2026-43300 PUBLISHED

drm/panel: Fix a possible null-pointer dereference in jdi_panel_dsi_remove()

Assigner: Linux
Reserved: 01.05.2026 Published: 08.05.2026 Updated: 09.05.2026

In the Linux kernel, the following vulnerability has been resolved:

drm/panel: Fix a possible null-pointer dereference in jdi_panel_dsi_remove()

In jdi_panel_dsi_remove(), jdi is explicitly checked, indicating that it may be NULL:

if (!jdi) mipi_dsi_detach(dsi);

However, when jdi is NULL, the function does not return and continues by calling jdi_panel_disable():

err = jdi_panel_disable(&jdi->base);

Inside jdi_panel_disable(), jdi is dereferenced unconditionally, which can lead to a NULL-pointer dereference:

struct jdi_panel *jdi = to_panel_jdi(panel); backlight_disable(jdi->backlight);

To prevent such a potential NULL-pointer dereference, return early from jdi_panel_dsi_remove() when jdi is NULL.

Product Status

Vendor Linux
Product Linux
Versions Default: unaffected
  • affected from 25205087df1ffe06ccea9302944ed1f77dc68c6f to ec2f37bbb733cdd7ed7d04171fca728a532414d5 (excl.)
  • affected from 25205087df1ffe06ccea9302944ed1f77dc68c6f to 2f5427d8726b22b807beec248d7d6bf88e291e0b (excl.)
  • affected from 25205087df1ffe06ccea9302944ed1f77dc68c6f to 83ce0085fabf757b039322928188ad78e962d609 (excl.)
  • affected from 25205087df1ffe06ccea9302944ed1f77dc68c6f to 95eed73b871111123a8b1d31cb1fce7e902e49ea (excl.)
Vendor Linux
Product Linux
Versions Default: affected
  • Version 6.7 is affected
  • unaffected from 0 to 6.7 (excl.)
  • unaffected from 6.12.75 to 6.12.* (incl.)
  • unaffected from 6.18.16 to 6.18.* (incl.)
  • unaffected from 6.19.6 to 6.19.* (incl.)
  • unaffected from 7.0 to * (incl.)

References