CVE-2025-40086
BaseFortify
Publication date: 2025-10-30
Last updated on: 2025-10-30
Assigner: kernel.org
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| linux | linux_kernel | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-UNKNOWN |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability in the Linux kernel's drm/xe component involves the improper handling of buffer objects (BOs) within the same virtual machine (VM) when using an array of VM binds. Specifically, the system could evict BOs in the same VM under certain conditions, which may cause NULL pointer dereferences later in the bind pipeline. The fix involves clearing the allow_res_evict flag in the xe_bo_validate call to prevent such evictions.
How can this vulnerability impact me? :
The vulnerability can lead to NULL pointer dereferences during the bind pipeline in the Linux kernel's drm/xe component. This could cause system instability, crashes, or denial of service conditions when handling buffer objects within the same VM, potentially affecting system reliability and availability.
What immediate steps should I take to mitigate this vulnerability?
Apply the patch that clears the allow_res_evict flag in the xe_bo_validate call in the Linux kernel drm/xe driver to prevent eviction of buffer objects within the same VM. This involves updating the kernel to the fixed version containing the commit 8b9ba8d6d95fe75fed6b0480bb03da4b321bea08.