Linux Kernel Use-After-Free Vulnerability in DRM Subsystem

Vulnerability

A use-after-free vulnerability has been identified in the Linux kernel's Direct Rendering Manager (DRM) subsystem, specifically within the Qualcomm Snapdragon MSM graphics driver. This vulnerability occurs during the runtime resume process, where a hardware configuration pointer is improperly set to NULL. As a result, the system attempts to access freed memory, leading to a kernel paging request error. The issue has been addressed in the official Linux kernel repository.

Impact

Exploitation of this vulnerability causes a kernel paging request error, indicating a failure to properly manage memory access, which can lead to undefined behavior or system crashes.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

3.5

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

3.5

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Use-After-Free Vulnerability in DRM Subsystem

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating