CVE-2025-71301
Received Received - Intake
Race Condition in Linux Kernel DRM GEM SHMEM Helper

Publication date: 2026-05-08

Last updated on: 2026-05-08

Assigner: kernel.org

Description
In the Linux kernel, the following vulnerability has been resolved: drm/tests: shmem: Hold reservation lock around vmap/vunmap Acquire and release the GEM object's reservation lock around vmap and vunmap operations. The tests use vmap_locked, which led to errors such as show below. [ 122.292030] WARNING: CPU: 3 PID: 1413 at drivers/gpu/drm/drm_gem_shmem_helper.c:390 drm_gem_shmem_vmap_locked+0x3a3/0x6f0 [ 122.468066] WARNING: CPU: 3 PID: 1413 at drivers/gpu/drm/drm_gem_shmem_helper.c:293 drm_gem_shmem_pin_locked+0x1fe/0x350 [ 122.563504] WARNING: CPU: 3 PID: 1413 at drivers/gpu/drm/drm_gem_shmem_helper.c:234 drm_gem_shmem_get_pages_locked+0x23c/0x370 [ 122.662248] WARNING: CPU: 2 PID: 1413 at drivers/gpu/drm/drm_gem_shmem_helper.c:452 drm_gem_shmem_vunmap_locked+0x101/0x330 Only export the new vmap/vunmap helpers for Kunit tests. These are not interfaces for regular drivers.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-05-08
Last Modified
2026-05-08
Generated
2026-06-19
AI Q&A
2026-05-08
EPSS Evaluated
2026-06-18
NVD
CVE-2025-71301
EUVD
EUVD-2025-209750
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
linux linux_kernel *
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-UNKNOWN
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Compliance Impact

The provided information about CVE-2025-71301 does not include any details regarding its impact on compliance with common standards and regulations such as GDPR or HIPAA.

Executive Summary

This vulnerability in the Linux kernel relates to the drm/tests subsystem, specifically the shmem (shared memory) component. The issue was that the reservation lock for GEM objects was not properly held around the vmap and vunmap operations. This improper locking led to errors and warnings during execution, as the tests used a function called vmap_locked incorrectly. The fix involved acquiring and releasing the GEM object's reservation lock properly around these operations to prevent such errors.

Impact Analysis

The vulnerability can cause errors and warnings in the GPU DRM subsystem of the Linux kernel, potentially leading to instability or unexpected behavior during graphics memory management operations. Since the issue involves improper locking around memory mapping functions, it could result in race conditions or data corruption in the graphics memory handling, affecting system reliability.

Detection Guidance

This vulnerability can be detected by monitoring the system logs for specific warning messages related to the drm_gem_shmem_helper functions in the Linux kernel.

  • Check the kernel log for warnings such as:
  • [ 122.292030] WARNING: CPU: 3 PID: 1413 at drivers/gpu/drm/drm_gem_shmem_helper.c:390 drm_gem_shmem_vmap_locked+0x3a3/0x6f0
  • [ 122.468066] WARNING: CPU: 3 PID: 1413 at drivers/gpu/drm/drm_gem_shmem_helper.c:293 drm_gem_shmem_pin_locked+0x1fe/0x350
  • [ 122.563504] WARNING: CPU: 3 PID: 1413 at drivers/gpu/drm/drm_gem_shmem_helper.c:234 drm_gem_shmem_get_pages_locked+0x23c/0x370
  • [ 122.662248] WARNING: CPU: 2 PID: 1413 at drivers/gpu/drm/drm_gem_shmem_helper.c:452 drm_gem_shmem_vunmap_locked+0x101/0x330

You can use the following command to check for these warnings in the kernel log:

  • dmesg | grep drm_gem_shmem_helper
Mitigation Strategies

To mitigate this vulnerability, update the Linux kernel to a version where the issue has been resolved.

The fix involves acquiring and releasing the GEM object's reservation lock around vmap and vunmap operations, which prevents the errors described.

Avoid using the vmap/vunmap helpers outside of Kunit tests, as the new helpers are only exported for testing purposes and not intended for regular drivers.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-71301. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart