CVE-2025-39740

medium

Description

In the Linux kernel, the following vulnerability has been resolved: drm/xe/migrate: prevent potential UAF If we hit the error path, the previous fence (if there is one) has already been put() prior to this, so doing a fence_wait could lead to UAF. Tweak the flow to do to the put() until after we do the wait. (cherry picked from commit 9b7ca35ed28fe5fad86e9d9c24ebd1271e4c9c3e)

References

https://git.kernel.org/stable/c/7e46fa64a4b94208563c3a5bf1d7f4346f94abea

https://git.kernel.org/stable/c/145832fbdd17b1d77ffd6cdd1642259e101d1b7e

Details

Source: Mitre, NVD

Published: 2025-09-11

Updated: 2025-09-15

Risk Information

CVSS v2

Base Score: 4.6

Vector: CVSS2#AV:L/AC:L/Au:S/C:N/I:N/A:C

Severity: Medium

CVSS v3

Base Score: 5.5

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Severity: Medium

EPSS

EPSS: 0.00018