Linux Kernel DRM/XE SVM Initialization Vulnerability Leading to Null Pointer Dereference

Vulnerability

A vulnerability in the Linux kernel's Direct Rendering Manager (DRM) subsystem, specifically within the XE virtual memory management, has been addressed. The issue arose because the function 'xe_svm_init()' was called too late in the virtual machine (VM) creation process. This delay allowed 'xe_svm_fini()' to be invoked prematurely on the error path, before the SVM state was properly initialized. The consequence was a series of error messages followed by a critical null pointer dereference.

Impact

Exploiting this vulnerability could lead to a fatal null pointer dereference, causing a crash or undefined behavior in the system.

Added: Jul 10, 2025, 8:40 AM

Updated: Jul 10, 2025, 8:40 AM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.2

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.2

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel DRM/XE SVM Initialization Vulnerability Leading to Null Pointer Dereference

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating