Linux Kernel Vulnerability in drm/msm Affects Multiple Products
CVE-2025-39747

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 11 September 2025

What is CVE-2025-39747?

A recent vulnerability within the Linux kernel, specifically in the drm/msm component, concerns improper error handling during memory allocation. The function msm_ioctl_gem_info_set_metadata() failed to manage errors from the krealloc function adequately, which could lead to potential NULL pointer dereference. The update mitigates this risk by ensuring that any failure during memory allocation returns an appropriate -ENOMEM error. This improvement not only prevents crashes but also addresses deadlock risks tied to improper allocation. The thorough patchwork addressing this issue can enhance overall system stability and security.

Affected Version(s)

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 53dc780c1e94ea782d8936b41bfaa83c663702eb

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 01e3eda8edc3c4caaa49261d1a56c799b0bd6268

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

References

https://git.kernel.org/stable/c/53dc780c1e94ea782d8936b41...

https://git.kernel.org/stable/c/01e3eda8edc3c4caaa49261d1...

https://git.kernel.org/stable/c/d5386bcede7b57b193c658dcb...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 11, 2025
Vulnerability Reserved
Apr 16, 2025