CVE-2025-38409

Summary

In the Linux kernel, the following vulnerability has been resolved:

drm/msm: Fix another leak in the submit error path

put_unused_fd() doesn't free the installed file, if we've already done fd_install(). So we need to also free the sync_file.

Patchwork: https://patchwork.freedesktop.org/patch/653583/

Affected Software

VendorProductVersion RangeStatus
LinuxLinux0cf6c71d70d8aa39b8fd0e39c9009602a0e0d300 < 00b3401f692082ddf6342500d1be25560bba46d4affected
LinuxLinux0cf6c71d70d8aa39b8fd0e39c9009602a0e0d300 < c40ad1c04d306f7fde26337fdcf8a5979657d93faffected
LinuxLinux0cf6c71d70d8aa39b8fd0e39c9009602a0e0d300 < 3f6ce8433a9035b0aa810e1f5b708e9dc1c367b0affected
LinuxLinux0cf6c71d70d8aa39b8fd0e39c9009602a0e0d300 < 30d3819b0b9173e31b84d662a592af8bad351427affected
LinuxLinux0cf6c71d70d8aa39b8fd0e39c9009602a0e0d300 < f681c2aa8676a890eacc84044717ab0fd26e058faffected
LinuxLinux3.12affected
LinuxLinux0 < 3.12unaffected
LinuxLinux6.1.144 <= 6.1.*unaffected
LinuxLinux6.6.97 <= 6.6.*unaffected
LinuxLinux6.12.37 <= 6.12.*unaffected
LinuxLinux6.15.6 <= 6.15.*unaffected
LinuxLinux6.16 <= *unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

References