7.8

CVE-2025-22097

drm/vkms: Fix use after free and double free on init error

In the Linux kernel, the following vulnerability has been resolved:

drm/vkms: Fix use after free and double free on init error

If the driver initialization fails, the vkms_exit() function might
access an uninitialized or freed default_config pointer and it might
double free it.

Fix both possible errors by initializing default_config only when the
driver initialization succeeded.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 5.12 < 5.15.180
LinuxLinux Kernel Version >= 5.16 < 6.1.134
LinuxLinux Kernel Version >= 6.2 < 6.6.87
LinuxLinux Kernel Version >= 6.7 < 6.12.23
LinuxLinux Kernel Version >= 6.13 < 6.13.11
LinuxLinux Kernel Version >= 6.14 < 6.14.2
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.18% 0.078
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
134c704f-9b21-4f2e-91b3-4a467353bcc0 7.8 1.8 5.9
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CWE-416 Use After Free

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

https://git.kernel.org/stable/c/49a69f67f53518bdd9b7eeebf019a2da6cc0e954
Patch
https://git.kernel.org/stable/c/79d138d137b80eeb0a83244d1cff29e64cf91067
Patch
https://git.kernel.org/stable/c/561fc0c5cf41f646f3e9e61784cbc0fc832fb936
Patch
https://git.kernel.org/stable/c/d5eb8e347905ab17788a7903fa1d3d06747355f5
Patch
https://git.kernel.org/stable/c/b8a18bb53e06d6d3c1fd03d12533d6e333ba8853
Patch
https://git.kernel.org/stable/c/1f68f1cf09d06061eb549726ff8339e064eddebd
Patch
https://git.kernel.org/stable/c/ed15511a773df86205bda66c37193569575ae828
Patch
https://lists.debian.org/debian-lts-announce/2025/05/msg00045.html