CVE-2025-40360
Published Dec 16, 2025
Modified Apr 15, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: drm/sysfb: Do not dereference NULL pointer in plane reset The plane state in __drm_gem_reset_shadow_plane() can be NULL. Do not deref that pointer, but forward NULL to the other plane-reset helpers. Clears plane->state to NULL. v2: - fix typo in commit description (Javier)
Is your site exposed to CVE-2025-40360?
Run a free security scan — no signup, results in seconds.
References
Other References
https://git.kernel.org/stable/c/14e02ed3876f4ab0ed6d3f41972175f8b8df3d70
https://git.kernel.org/stable/c/6abeff03cb79a2c7f4554a8e8738acd35bb37152
https://git.kernel.org/stable/c/6bdef5648a60e49d4a3b02461ab7ae3776877e77
https://git.kernel.org/stable/c/b61ed8005bd3102510fab5015ac6a275c9c5ea16
https://git.kernel.org/stable/c/c4faf7f417eea8b8d5cc570a1015736f307aa2d5
https://git.kernel.org/stable/c/c7d5e69866bbe95c1e4ab4c10a81e0a02d9ea232
Frequently Asked Questions
What is CVE-2025-40360? +
In the Linux kernel, the following vulnerability has been resolved:
drm/sysfb: Do not dereference NULL pointer in plane reset
The plane state in __drm_gem_reset_shadow_plane() can be NULL. Do not
deref that pointer, but forward NULL to the other plane-reset helpers.
Clears plane->state to NULL.
v2:
- fix typo in commit description (Javier)
How do I check if I'm vulnerable to CVE-2025-40360? +
You can use Secably's free Website Scanner to check your website for known vulnerabilities. For infrastructure scanning, use the Port Scanner to identify exposed services that may be affected. Check the vendor advisories linked above for specific patch and version information.