In the Linux kernel, the following vulnerability has been resolved:
drm/bridge: cadence: cdns-mhdp8546-core: Set the mhdp connector earlier in atomic_enable()
In case if we get errors in cdnsmhdplinkup() or cdnsmhdpregread() in atomicenable, we will go to cdnsmhdpmodesetretryfn() and will hit NULL pointer while trying to access the mutex. We need the connector to be set before that. Unlike in legacy cases with flag !DRMBRIDGEATTACHNOCONNECTOR, we do not have connector initialised in bridgeattach(), so add the mhdp->connectorptr in device structure to handle both cases with DRMBRIDGEATTACHNOCONNECTOR and !DRMBRIDGEATTACHNOCONNECTOR, set it in atomicenable() earlier to avoid possible NULL pointer dereference in recovery paths like modesetretryfn() with the DRMBRIDGEATTACHNOCONNECTOR flag set.
{
"osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/53xxx/CVE-2026-53058.json",
"cna_assigner": "Linux"
}