CVE-2025-39871

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains an issue within the dmaengine subsystem, specifically related to the idxd driver. A duplicate call to put device() within the idxd free() function can lead to a reference count underflow, potentially resulting in a use-after-free condition. This occurs because idxd unregister devices() already handles releasing the device reference through device unregister() and put device(). When CONFIG DEBUG KOBJECT RELEASE is enabled, asynchronous cleanup triggered by put device() can exacerbate the issue, leading to memory corruption during module unloading. The improper idxd free() call is the root cause of the problem.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-911CWE-416

Related Identifiers

BDU:2025-13887

CVE-2025-39871

ECHO-C430-EC5E-6DDE

MGASA-2025-0309

MGASA-2025-0310

OPENSUSE-SU-2025:20081-1

SUSE-SU-2025:03600-1

SUSE-SU-2025:03634-1

SUSE-SU-2025:20851-1

SUSE-SU-2025:20861-1

SUSE-SU-2025:20870-1

SUSE-SU-2025:20898-1

SUSE-SU-2025:21074-1

SUSE-SU-2025:21139-1

SUSE-SU-2025:21179-1

SUSE-SU-2025:3751-1

SUSE-SU-2025:4057-1

SUSE-SU-2025:4132-1

SUSE-SU-2025:4141-1

USN-8095-1

USN-8095-2

USN-8095-3

USN-8095-4

USN-8095-5

USN-8100-1

USN-8125-1

USN-8126-1

USN-8165-1

USN-8261-1

Affected Products

Astra Linux

Debian

Linuxmint

Linux Kernel

Suse

Ubuntu

CVE-2025-39871

Weakness Enumeration

Related Identifiers

Affected Products

References · 3520