CVE-2025-71298

MEDIUM EPSS 2.2%
Published May 8, 20261mo ago · Modified Jun 17, 20262w ago
5.5 CVSS 3.1
Medium
Find Similar
Published May 8, 2026 1mo ago
Last Modified Jun 17, 2026 2w ago

Description

In the Linux kernel, the following vulnerability has been resolved: drm/tests: shmem: Hold reservation lock around madvise Acquire and release the GEM object's reservation lock around calls to the object's madvide operation. The tests use drm_gem_shmem_madvise_locked(), which led to errors such as show below. [ 58.339389] WARNING: CPU: 1 PID: 1352 at drivers/gpu/drm/drm_gem_shmem_helper.c:499 drm_gem_shmem_madvise_locked+0xde/0x140 Only export the new helper drm_gem_shmem_madvise() for Kunit tests. This is not an interface for regular drivers.

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
2.2% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Affected Products 2

VendorProductVersionRange
linuxlinux_kernel*≥6.16  –  <6.18.16
linuxlinux_kernel*≥6.19  –  <6.19.6

References 3

  • git.kernel.org https://git.kernel.org/stable/c/07cfcab370da06f26c273306571cbb0bfa3b9c52
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/607d07d8cc0b835a8701259f08a03dc149b79b4f
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/9cc77691b5fd615625955cedf726da57543088f1
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/07cfcab370da06f26c273306571cbb0bfa3b9c52
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/607d07d8cc0b835a8701259f08a03dc149b79b4f
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/9cc77691b5fd615625955cedf726da57543088f1
    Patch