CVE-2025-68749

EPSS 0.02%
Veröffentlicht 24.12.2025 12:09:44
Zuletzt bearbeitet 26.02.2026 18:44:06
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

accel/ivpu: Fix race condition when unbinding BOs

In the Linux kernel, the following vulnerability has been resolved:

accel/ivpu: Fix race condition when unbinding BOs

Fix 'Memory manager not clean during takedown' warning that occurs
when ivpu_gem_bo_free() removes the BO from the BOs list before it
gets unmapped. Then file_priv_unbind() triggers a warning in
drm_mm_takedown() during context teardown.

Protect the unmapping sequence with bo_list_lock to ensure the BO is
always fully unmapped when removed from the list. This ensures the BO
is either fully unmapped at context teardown time or present on the
list and unmapped by file_priv_unbind().

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 7

NVD 3 VulnDex Vulnerability Enrichment 6

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Linux ≫ Linux Kernel Version >= 6.8 < 6.12.68

Linux ≫ Linux Kernel Version >= 6.13 < 6.17.13

Linux ≫ Linux Kernel Version >= 6.18 < 6.18.2

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.02%	0.06

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	4.7	1	3.6	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE-362 Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

The product contains a concurrent code sequence that requires temporary, exclusive access to a shared resource, but a timing window exists in which the shared resource can be modified by another code sequence operating concurrently.

https://git.kernel.org/stable/c/fb16493ebd8f171bcf0772262619618a131f30f7

Patch

https://git.kernel.org/stable/c/d71333ffdd3707d84cfb95acfaf8ba892adc066b

Patch

https://git.kernel.org/stable/c/00812636df370bedf4e44a0c81b86ea96bca8628

Patch

https://git.kernel.org/stable/c/0328bb097bef05a796217c54b3d651cc3782827c

Patch

https://nvd.nist.gov/vuln/detail/CVE-2025-68749

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-68749

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-68749

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2025-68749