7.8
CVE-2025-22097
- EPSS 0.18%
- Veröffentlicht 16.04.2025 14:12:47
- Zuletzt bearbeitet 03.11.2025 20:17:44
- CVE-Watchlists
- Unerledigt
drm/vkms: Fix use after free and double free on init error
In the Linux kernel, the following vulnerability has been resolved: drm/vkms: Fix use after free and double free on init error If the driver initialization fails, the vkms_exit() function might access an uninitialized or freed default_config pointer and it might double free it. Fix both possible errors by initializing default_config only when the driver initialization succeeded.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Linux ≫ Linux Kernel Version >= 5.12 < 5.15.180
Linux ≫ Linux Kernel Version >= 5.16 < 6.1.134
Linux ≫ Linux Kernel Version >= 6.2 < 6.6.87
Linux ≫ Linux Kernel Version >= 6.7 < 6.12.23
Linux ≫ Linux Kernel Version >= 6.13 < 6.13.11
Linux ≫ Linux Kernel Version >= 6.14 < 6.14.2
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.18% | 0.078 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| 134c704f-9b21-4f2e-91b3-4a467353bcc0 | 7.8 | 1.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
CWE-416 Use After Free
The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.
https://git.kernel.org/stable/c/49a69f67f53518bdd9b7eeebf019a2da6cc0e954
https://git.kernel.org/stable/c/79d138d137b80eeb0a83244d1cff29e64cf91067
https://git.kernel.org/stable/c/561fc0c5cf41f646f3e9e61784cbc0fc832fb936
https://git.kernel.org/stable/c/d5eb8e347905ab17788a7903fa1d3d06747355f5
https://git.kernel.org/stable/c/b8a18bb53e06d6d3c1fd03d12533d6e333ba8853
https://git.kernel.org/stable/c/1f68f1cf09d06061eb549726ff8339e064eddebd
https://git.kernel.org/stable/c/ed15511a773df86205bda66c37193569575ae828
https://lists.debian.org/debian-lts-announce/2025/05/msg00045.html