Primary

Context

Linux Kernel Use-After-Free Vulnerability in DRM MSM Component

Vulnerability

A use-after-free vulnerability has been identified in the Linux kernel's DRM MSM (Direct Rendering Manager Mobile Subsystem) component. This issue arises because the bridge counter is not reset when the DRM device is torn down, leading to stale pointers accessing deallocated structures during subsequent teardown processes. This vulnerability can be exacerbated by multiple probe deferrals, potentially corrupting data beyond the bridge array. The vulnerability affects several versions of the Linux kernel.

Impact

Exploitation of this vulnerability can lead to a use-after-free condition, allowing for the manipulation of deallocated memory, which could be exploited to execute arbitrary code or cause a denial-of-service condition.

Remediation

Users can upgrade to the latest stable version of the Linux kernel to address this vulnerability.

Added: Oct 4, 2025, 7:37 PM

Updated: Oct 4, 2025, 7:37 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

5.3

remediation

7.7

relevance

0.6

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

5.3

remediation

7.7

relevance

0.6

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Use-After-Free Vulnerability in DRM MSM Component

Vulnerability

Impact

Remediation

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating