Linux Kernel Vulnerability in Exynos7 DRM Handling
CVE-2025-38467

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 25 July 2025

What is CVE-2025-38467?

A vulnerability has been identified in the Linux kernel specifically within the Exynos7 DRM handling code. When a TTY serial or another console device is supported, there is a potential for the kernel to experience a panic during the boot process. This issue results from a race condition, where the system attempts to handle vertical blanking interrupts (vblanks) without ensuring the DRM device is properly prepared for handling these calls. By implementing a validation check to confirm whether the DRM device can manage vblanks before invoking the drm_crtc_handle_vblank() method, the risk of a kernel panic can be mitigated.

Affected Version(s)

Linux 96976c3d9aff4e1387c30f6356ac01fa6f72ef46

Linux 96976c3d9aff4e1387c30f6356ac01fa6f72ef46 < 87825fbd1e176cd5b896940f3959e7c9a916945d

References

https://git.kernel.org/stable/c/b4e72c0bf878f02faa00a7dc7...

https://git.kernel.org/stable/c/a2130463fc9451005660b0eda...

https://git.kernel.org/stable/c/87825fbd1e176cd5b896940f3...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 25, 2025
Vulnerability Reserved
Apr 16, 2025