CVE-2025-38036

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A vulnerability in the Linux kernel has been resolved. The issue occurs in the drm/xe/vf module, where VFs (Virtual Functions) need to communicate with the GuC (Graphics Unit Controller) to obtain the GMDID (Graphics Memory Device ID) value. However, due to recent refactoring, the GT (Graphics Technology) MMIO (Memory-Mapped Input/Output) members are initialized later, leading to a potential NPD (Non-Paged Data) crash when the VF attempts to use xe mmio read or xe mmio write functions from GuC functions. The crash is caused by an unset MMIO register address.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.