5.5

CVE-2025-38095

dma-buf: insert memory barrier before updating num_fences

In the Linux kernel, the following vulnerability has been resolved:

dma-buf: insert memory barrier before updating num_fences

smp_store_mb() inserts memory barrier after storing operation.
It is different with what the comment is originally aiming so Null
pointer dereference can be happened if memory update is reordered.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 5.0 < 5.10.241
LinuxLinux Kernel Version >= 5.11 < 5.15.192
LinuxLinux Kernel Version >= 5.16 < 6.1.140
LinuxLinux Kernel Version >= 6.2 < 6.6.92
LinuxLinux Kernel Version >= 6.7 < 6.12.30
LinuxLinux Kernel Version >= 6.13 < 6.14.8
LinuxLinux Kernel Version6.15 Updaterc1
LinuxLinux Kernel Version6.15 Updaterc2
LinuxLinux Kernel Version6.15 Updaterc3
LinuxLinux Kernel Version6.15 Updaterc4
LinuxLinux Kernel Version6.15 Updaterc5
LinuxLinux Kernel Version6.15 Updaterc6
DebianDebian Linux Version11.0
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.17% 0.063
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CWE-476 NULL Pointer Dereference

The product dereferences a pointer that it expects to be valid but is NULL.

https://git.kernel.org/stable/c/3becc659f9cb76b481ad1fb71f54d5c8d6332d3f
Patch
https://git.kernel.org/stable/c/c9d2b9a80d06a58f37e0dc8c827075639b443927
Patch
https://git.kernel.org/stable/c/fe1bebd0edb22e3536cbc920ec713331d1367ad4
Patch
https://git.kernel.org/stable/c/08680c4dadc6e736c75bc2409d833f03f9003c51
Patch
https://git.kernel.org/stable/c/72c7d62583ebce7baeb61acce6057c361f73be4a
Patch
https://git.kernel.org/stable/c/90eb79c4ed98a4e24a62ccf61c199ab0f680fa8f
Patch
https://git.kernel.org/stable/c/d0b7f11dd68b593bd970e5735be00e8d89bace30
Patch
https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html
Third Party Advisory
Mailing List
https://lists.debian.org/debian-lts-announce/2025/08/msg00010.html
Third Party Advisory
Mailing List