CVE-2025-38410

Summary

In the Linux kernel, the following vulnerability has been resolved:

drm/msm: Fix a fence leak in submit error path

In error paths, we could unref the submit without calling drm_sched_entity_push_job(), so msm_job_free() will never get called. Since drm_sched_job_cleanup() will NULL out the s_fence, we can use that to detect this case.

Patchwork: https://patchwork.freedesktop.org/patch/653584/

Affected Software

VendorProductVersion RangeStatus
LinuxLinux0cf6c71d70d8aa39b8fd0e39c9009602a0e0d300 < 5deab0fa6cfd0cd7def17598db15ceb84f950584affected
LinuxLinux0cf6c71d70d8aa39b8fd0e39c9009602a0e0d300 < 201eba5c9652a900c0b248070263f9acd3735689affected
LinuxLinux0cf6c71d70d8aa39b8fd0e39c9009602a0e0d300 < fe2695b2f63bd77e0e03bc0fc779164115bb4699affected
LinuxLinux0cf6c71d70d8aa39b8fd0e39c9009602a0e0d300 < 0eaa495b3d5710e5ba72051d2e01bb28292c625caffected
LinuxLinux0cf6c71d70d8aa39b8fd0e39c9009602a0e0d300 < 0dc817f852e5f8ec8501d19ef7dcc01affa181d0affected
LinuxLinux0cf6c71d70d8aa39b8fd0e39c9009602a0e0d300 < 5d319f75ccf7f0927425a7545aa1a22b3eedc189affected
LinuxLinux3.12affected
LinuxLinux0 < 3.12unaffected
LinuxLinux5.15.187 <= 5.15.*unaffected
LinuxLinux6.1.144 <= 6.1.*unaffected
LinuxLinux6.6.97 <= 6.6.*unaffected
LinuxLinux6.12.37 <= 6.12.*unaffected
LinuxLinux6.15.6 <= 6.15.*unaffected
LinuxLinux6.16 <= *unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

References