Linux Kernel DRM VMA Manager Vulnerability Allowing One-Time Offset Node Approval

Vulnerability

A vulnerability in the Linux kernel's Direct Rendering Manager (DRM) VMA (Virtual Memory Area) manager has been addressed. The issue allowed DRM drivers to safely check and permit 'drm_vma_offset_node' for a DRM file only once. Previously, drivers had to manage each 'drm_vma_node_allow()' call and subsequently revoke it to avoid memory leaks. The vulnerability has been resolved by introducing 'drm_vma_node_allow_once()', enabling drivers to make non-refcounted allowance without the need for tracking.

Impact

The vulnerability could lead to memory leaks by requiring drivers to manually revoke VMA allowances, potentially causing inefficient memory management or exhaustion.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel DRM VMA Manager Vulnerability Allowing One-Time Offset Node Approval

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating