CVE-2025-38309

Name of the Vulnerable Software and Affected Versions: Linux kernel (affected versions not specified)

Description: The Linux kernel contains an issue within the drm/xe/vm subsystem. A flaw exists in the xe vm close and put() function where xe svm fini() can be called prematurely during virtual machine creation, specifically on error paths before the svm state is fully initialized. This can lead to system crashes (splats) and a non-recoverable NPD (Null Pointer Dereference) error.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.