PT-2025-49077 · Linux+3 · Linux Kernel+3

Published

2025-12-04

Updated

2026-05-26

CVE-2025-40247

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.16.0-rc2-00809-g0b6974bb4134-dirty #367

Description The Linux kernel contains a flaw within the drm/msm subsystem related to the handling of pgtable preallocation. Specifically, the msm vma job free() function, directly callable from an ioctl, can lead to an error path where prealloc cleanup() is invoked without a prior successful prealloc allocate() call. This can result in a kernel NULL pointer dereference, potentially leading to a system crash. The issue was identified through a reported kernel splat involving a memory abort and a subsequent oops.

Recommendations Update to a version later than 6.16.0-rc2-00809-g0b6974bb4134-dirty #367.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2025-40247

ECHO-50A7-CBEE-BC23

USN-8094-1

USN-8094-2

USN-8094-3

USN-8094-4

USN-8094-5

USN-8152-1

Affected Products

Debian

Linuxmint

Linux Kernel

Ubuntu

PT-2025-49077 · Linux+3 · Linux Kernel+3

CVE-2025-40247

Related Identifiers

Affected Products

References · 219