Object Leak in Linux Kernel Affecting DRM/MSM Components
CVE-2025-40069

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 28 October 2025

What is CVE-2025-40069?

A vulnerability has been identified in the Linux kernel, particularly affecting the DRM (Direct Rendering Manager) and MSM (Mobile Station Modem) components. This issue arises from an object reference leak during the handle lookup process. In scenarios where the lookup fails midway, there can be an accumulation of unyielded object references, potentially leading to resource exhaustion and negatively affecting system stability. Applying the relevant patches is crucial to mitigate this risk and maintain the integrity of the kernel.

Affected Version(s)

Linux 2e6a8a1fe2b262a6dfd0a65041fcd830ee1e7143 < 2b512909a291a964cfcf6b58de13256ab3e848c4

Linux 2e6a8a1fe2b262a6dfd0a65041fcd830ee1e7143 < 278f8904434aa96055e793936b5977c010549e28

Linux 6.17

References

https://git.kernel.org/stable/c/2b512909a291a964cfcf6b58d...

https://git.kernel.org/stable/c/278f8904434aa96055e793936...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 28, 2025
Vulnerability Reserved
Apr 16, 2025

JSON