Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
CVE Vulnerability Details :
CVE-2025-22097
PUBLISHED
More InfoOfficial Page
Assigner-Linux
Assigner Org ID-416baaa9-dc9f-4396-8d5f-8c081fb06d67
View Known Exploited Vulnerability (KEV) details
Published At-16 Apr, 2025 | 14:12
Updated At-26 May, 2025 | 05:18
Rejected At-
▼CVE Numbering Authority (CNA)
drm/vkms: Fix use after free and double free on init error

In the Linux kernel, the following vulnerability has been resolved: drm/vkms: Fix use after free and double free on init error If the driver initialization fails, the vkms_exit() function might access an uninitialized or freed default_config pointer and it might double free it. Fix both possible errors by initializing default_config only when the driver initialization succeeded.

Affected Products
Vendor
Linux Kernel Organization, IncLinux
Product
Linux
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Program Files
  • drivers/gpu/drm/vkms/vkms_drv.c
Default Status
unaffected
Versions
Affected
  • From 2df7af93fdadb9ba8226fe443fae15ecdefda2a6 before 49a69f67f53518bdd9b7eeebf019a2da6cc0e954 (git)
  • From 2df7af93fdadb9ba8226fe443fae15ecdefda2a6 before 79d138d137b80eeb0a83244d1cff29e64cf91067 (git)
  • From 2df7af93fdadb9ba8226fe443fae15ecdefda2a6 before 561fc0c5cf41f646f3e9e61784cbc0fc832fb936 (git)
  • From 2df7af93fdadb9ba8226fe443fae15ecdefda2a6 before d5eb8e347905ab17788a7903fa1d3d06747355f5 (git)
  • From 2df7af93fdadb9ba8226fe443fae15ecdefda2a6 before b8a18bb53e06d6d3c1fd03d12533d6e333ba8853 (git)
  • From 2df7af93fdadb9ba8226fe443fae15ecdefda2a6 before 1f68f1cf09d06061eb549726ff8339e064eddebd (git)
  • From 2df7af93fdadb9ba8226fe443fae15ecdefda2a6 before ed15511a773df86205bda66c37193569575ae828 (git)
Vendor
Linux Kernel Organization, IncLinux
Product
Linux
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Program Files
  • drivers/gpu/drm/vkms/vkms_drv.c
Default Status
affected
Versions
Affected
  • 5.12
Unaffected
  • From 0 before 5.12 (semver)
  • From 5.15.180 through 5.15.* (semver)
  • From 6.1.134 through 6.1.* (semver)
  • From 6.6.87 through 6.6.* (semver)
  • From 6.12.23 through 6.12.* (semver)
  • From 6.13.11 through 6.13.* (semver)
  • From 6.14.2 through 6.14.* (semver)
  • From 6.15 through * (original_commit_for_fix)
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://git.kernel.org/stable/c/49a69f67f53518bdd9b7eeebf019a2da6cc0e954
N/A
https://git.kernel.org/stable/c/79d138d137b80eeb0a83244d1cff29e64cf91067
N/A
https://git.kernel.org/stable/c/561fc0c5cf41f646f3e9e61784cbc0fc832fb936
N/A
https://git.kernel.org/stable/c/d5eb8e347905ab17788a7903fa1d3d06747355f5
N/A
https://git.kernel.org/stable/c/b8a18bb53e06d6d3c1fd03d12533d6e333ba8853
N/A
https://git.kernel.org/stable/c/1f68f1cf09d06061eb549726ff8339e064eddebd
N/A
https://git.kernel.org/stable/c/ed15511a773df86205bda66c37193569575ae828
N/A
▼Authorized Data Publishers (ADP)
CISA ADP Vulnrichment
Affected Products
Problem Types
TypeCWE IDDescription
CWECWE-416CWE-416 Use After Free
Metrics
VersionBase scoreBase severityVector
3.17.8HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
Details not found