cve 2025 38597

CVE-2025-38597 is a vulnerability in the Linux kernel's Direct Rendering Manager (DRM) driver for Rockchip VOP2, a display controller used in Rockchip System-on-Chips. The issue involves a missing null-pointer check that can be trivially triggered on affected hardware, leading to a sustained or persistent denial-of-service condition. Security researchers and maintainers identified and fixed the flaw to prevent kernel crashes. This tag covers discussions about the vulnerability, its impact on Rockchip-based systems, and the patch applied to address the denial-of-service risk.