Vulnerability in Linux Kernel Related to GEM Object Instance Stability
CVE-2025-38674

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 22 August 2025

What is CVE-2025-38674?

A vulnerability in the Linux kernel related to the Direct Rendering Manager (DRM) has been identified where the dma_buf field in the drm_gem_object structure becomes unstable over the object's lifetime. Specifically, it becomes NULL once the user space releases the final Graphics Execution Manager (GEM) handle associated with the buffer object, leading to a NULL-pointer dereference. Previous workarounds only partially addressed the issue, particularly affecting buffer objects lacking an associated DRM framebuffer. This situation necessitated reverting to an earlier implementation that utilizes the .import_attach->dmabuf field to ensure better stability and security in handling GEM objects.

Affected Version(s)

Linux f83a9b8c7fd0557b0c50784bfdc1bbe9140c9bf8 < 5f05d83ce689a8930a70dfa73f879604aef8cc03

Linux f83a9b8c7fd0557b0c50784bfdc1bbe9140c9bf8

Linux 6.15

References

https://git.kernel.org/stable/c/5f05d83ce689a8930a70dfa73...

https://git.kernel.org/stable/c/fb4ef4a52b79a22ad382bfe77...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 22, 2025
Vulnerability Reserved
Apr 16, 2025