Primary

Context

Linux Kernel Use-After-Free Vulnerability in DRM XE Migration Restore

Vulnerability

Patched

A use-after-free vulnerability has been identified in the Linux kernel's DRM XE component, specifically within the SR-IOV packet handling. This issue arises when an error occurs during the migration restore process, as the data pointer is not properly reset to NULL. Consequently, this oversight can lead to a use-after-free condition in subsequent write operations. The vulnerability affects several versions of the Linux kernel.

Impact

Exploitation of this vulnerability can lead to a use-after-free condition, which may be exploited to execute arbitrary code or cause a denial-of-service by crashing the system.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been addressed. Instructions for downloading the patched version are available on the Linux Kernel Archives.

Added: Apr 22, 2026, 3:08 PM

Updated: Apr 22, 2026, 3:08 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

1.9

exploitability

4.0

remediation

7.7

relevance

6.2

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

1.9

exploitability

4.0

remediation

7.7

relevance

6.2

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Use-After-Free Vulnerability in DRM XE Migration Restore

Vulnerability

Impact

Remediation

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating