CVE-2025-39747
BaseFortify
Publication date: 2025-09-11
Last updated on: 2025-11-25
Assigner: kernel.org
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| linux | linux_kernel | From 5.15.160 (inc) to 5.16 (inc) |
| linux | linux_kernel | From 5.15.160 (inc) to 5.16 (inc) |
| linux | linux_kernel | From 5.15.160 (inc) to 5.16 (inc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-476 | The product dereferences a pointer that it expects to be valid but is NULL. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is in the Linux kernel's drm/msm component, where the function msm_ioctl_gem_info_set_metadata did not properly handle a failure from the krealloc memory allocation function. Without proper error handling, a NULL pointer dereference could occur, potentially causing a crash or other unintended behavior. The patch adds error handling to check for krealloc failure and returns an error code (-ENOMEM) to avoid this issue.
How can this vulnerability impact me? :
If exploited, this vulnerability could lead to a NULL pointer dereference in the Linux kernel, which may cause system crashes or instability. This could impact system reliability and availability, potentially leading to denial of service conditions.
What immediate steps should I take to mitigate this vulnerability?
Apply the patch that adds error handling for krealloc in the msm_ioctl_gem_info_set_metadata() function in the Linux kernel drm/msm driver. This patch prevents NULL pointer dereference by checking for krealloc failure and returning -ENOMEM. Avoid using __GFP_NOFAIL in this context due to deadlock risks and allocation constraints.