CVE-2025-38410

drm/msm: Fix a fence leak in submit error path

Severity Score

"-"

*CVSS v-

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

In the Linux kernel, the following vulnerability has been resolved: drm/msm: Fix a fence leak in submit error path In error paths, we could unref the submit without calling
drm_sched_entity_push_job(), so msm_job_free() will never get
called. Since drm_sched_job_cleanup() will NULL out the
s_fence, we can use that to detect this case. Patchwork: https://patchwork.freedesktop.org/patch/653584/

En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: drm/msm: Se corrige una fuga de la valla en la ruta de error de envío. En las rutas de error, podríamos eliminar la referencia del envío sin llamar a drm_sched_entity_push_job(), por lo que msm_job_free() nunca se llamaría. Dado que drm_sched_job_cleanup() anulará la s_fence, podemos usarla para detectar este caso. Patchwork: https://patchwork.freedesktop.org/patch/653584/

*Credits: N/A

CVSS Scores

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2025-04-16 CVE Reserved
2025-07-25 CVE Published
2025-07-28 CVE Updated
2025-07-31 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CAPEC

References (7)

URL	Tag	Source
https://git.kernel.org/stable/c/0cf6c71d70d8aa39b8fd0e39c9009602a0e0d300	Vuln. Introduced

URL	Date	SRC

URL	Date	SRC
https://git.kernel.org/stable/c/5deab0fa6cfd0cd7def17598db15ceb84f950584	2025-07-10
https://git.kernel.org/stable/c/201eba5c9652a900c0b248070263f9acd3735689	2025-07-10
https://git.kernel.org/stable/c/fe2695b2f63bd77e0e03bc0fc779164115bb4699	2025-07-10
https://git.kernel.org/stable/c/0eaa495b3d5710e5ba72051d2e01bb28292c625c	2025-07-10
https://git.kernel.org/stable/c/0dc817f852e5f8ec8501d19ef7dcc01affa181d0	2025-07-10
https://git.kernel.org/stable/c/5d319f75ccf7f0927425a7545aa1a22b3eedc189	2025-06-09

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 3.12 < 5.15.187 Search vendor "Linux" for product "Linux Kernel" and version " >= 3.12 < 5.15.187"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 3.12 < 6.1.144 Search vendor "Linux" for product "Linux Kernel" and version " >= 3.12 < 6.1.144"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 3.12 < 6.6.97 Search vendor "Linux" for product "Linux Kernel" and version " >= 3.12 < 6.6.97"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 3.12 < 6.12.37 Search vendor "Linux" for product "Linux Kernel" and version " >= 3.12 < 6.12.37"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 3.12 < 6.15.6 Search vendor "Linux" for product "Linux Kernel" and version " >= 3.12 < 6.15.6"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 3.12 < 6.16 Search vendor "Linux" for product "Linux Kernel" and version " >= 3.12 < 6.16"		en		Affected