Description

In the Linux kernel, the following vulnerability has been resolved: drm/msm: Fix another leak in the submit error path put_unused_fd() doesn't free the installed file, if we've already done fd_install(). So we need to also free the sync_file. Patchwork: https://patchwork.freedesktop.org/patch/653583/

INFO

Published Date :

2025-07-25T13:20:14.229Z

Last Modified :

2025-11-03T17:37:42.074Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2025-38409 vulnerability.

Vendors Products
Debian
  • Debian Linux
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-38409.

URL Resource
https://git.kernel.org/stable/c/00b3401f692082ddf6342500d1be25560bba46d4 cve-icon cve-icon
https://git.kernel.org/stable/c/30d3819b0b9173e31b84d662a592af8bad351427 cve-icon cve-icon
https://git.kernel.org/stable/c/3f6ce8433a9035b0aa810e1f5b708e9dc1c367b0 cve-icon cve-icon
https://git.kernel.org/stable/c/c40ad1c04d306f7fde26337fdcf8a5979657d93f cve-icon cve-icon
https://git.kernel.org/stable/c/f681c2aa8676a890eacc84044717ab0fd26e058f cve-icon cve-icon
https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html cve-icon
https://lore.kernel.org/linux-cve-announce/2025072520-CVE-2025-38409-cee4@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2025-38409 cve-icon
https://www.cve.org/CVERecord?id=CVE-2025-38409 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact