CVE-2025-37930

MEDIUM EPSS 6.7%
Published May 20, 20251y ago · Modified Jun 17, 20262w ago
5.5 CVSS 3.1
Medium
Find Similar
Published May 20, 2025 1y ago
Last Modified Jun 17, 2026 2w ago

Description

In the Linux kernel, the following vulnerability has been resolved: drm/nouveau: Fix WARN_ON in nouveau_fence_context_kill() Nouveau is mostly designed in a way that it's expected that fences only ever get signaled through nouveau_fence_signal(). However, in at least one other place, nouveau_fence_done(), can signal fences, too. If that happens (race) a signaled fence remains in the pending list for a while, until it gets removed by nouveau_fence_update(). Should nouveau_fence_context_kill() run in the meantime, this would be a bug because the function would attempt to set an error code on an already signaled fence. Have nouveau_fence_context_kill() check for a fence being signaled.

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
6.7% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-617

Affected Products 11

VendorProductVersionRange
linuxlinux_kernel*≥5.6  –  <5.10.238
linuxlinux_kernel*≥5.11  –  <5.15.182
linuxlinux_kernel*≥5.16  –  <6.1.138
linuxlinux_kernel*≥6.2  –  <6.6.90
linuxlinux_kernel*≥6.7  –  <6.12.28
linuxlinux_kernel*≥6.13  –  <6.14.6
linuxlinux_kernel6.15any
linuxlinux_kernel6.15any
linuxlinux_kernel6.15any
linuxlinux_kernel6.15any
debiandebian_linux11.0any

References 9

  • git.kernel.org https://git.kernel.org/stable/c/0453825167ecc816ec15c736e52316f69db0deb9
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/126f5c6e0cb84e5c6f7a3a856d799d85668fb38e
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/2ec0f5f6d4768f292c8406ed92fa699f184577e5
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/39d6e889c0b19a2c79e1c74c843ea7c2d0f99c28
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/47ca11836c35c5698088fd87f7fb4b0ffa217e17
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/b771b2017260ffc3a8d4e81266619649bffcb242
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/bbe5679f30d7690a9b6838a583b9690ea73fe0e9
    Patch
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2025/08/msg00010.html
    Mailing ListThird Party Advisory
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html
    Mailing ListThird Party Advisory

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/0453825167ecc816ec15c736e52316f69db0deb9
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/126f5c6e0cb84e5c6f7a3a856d799d85668fb38e
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/2ec0f5f6d4768f292c8406ed92fa699f184577e5
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/39d6e889c0b19a2c79e1c74c843ea7c2d0f99c28
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/47ca11836c35c5698088fd87f7fb4b0ffa217e17
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/b771b2017260ffc3a8d4e81266619649bffcb242
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/bbe5679f30d7690a9b6838a583b9690ea73fe0e9
    Patch