Linux Kernel Panfrost DRM Memory Shrinker List Corruption Vulnerability

Vulnerability

A vulnerability in the Linux kernel's Panfrost Direct Rendering Manager (DRM) module has been addressed. The issue arose from the improper handling of the memory shrinker list when the madvise IOCTL was called twice on a Buffer Object (BO). This led to the BO being added to the list again without being removed first, causing corruption and ultimately crashing the kernel.

Impact

The vulnerability could lead to a kernel crash due to memory shrinker list corruption.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Panfrost DRM Memory Shrinker List Corruption Vulnerability

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating