CVE-2025-71308
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
27/05/2026
Last modified:
27/05/2026
Description
In the Linux kernel, the following vulnerability has been resolved:<br />
<br />
accel/amdxdna: Fix potential NULL pointer dereference in context cleanup<br />
<br />
aie_destroy_context() is invoked during error handling in<br />
aie2_create_context(). However, aie_destroy_context() assumes that the<br />
context&#39;s mailbox channel pointer is non-NULL. If mailbox channel<br />
creation fails, the pointer remains NULL and calling aie_destroy_context()<br />
can lead to a NULL pointer dereference.<br />
<br />
In aie2_create_context(), replace aie_destroy_context() with a function<br />
which request firmware to remove the context created previously.



