CVE-2025-37869
Description
In the Linux kernel, the following vulnerability has been resolved:drm/xe: Use local fence in error path of xe_migrate_clearThe intent of the error path in xe_migrate_clear is to wait on locallygenerated fence and then return. The code is waiting on m->fence whichcould be the local fence but this is only stable under the job mutexleading to a possible UAF. Fix code to wait on local fence.(cherry picked from commit 762b7e95362170b3e13a8704f38d5e47eca4ba74)
Risk Information
Base Score
7.8
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.052
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Linux kernel (USN-7594-1) linux-image-6.14.0-1004-realtime_6.14.0-1004.4_amd64.deb | Linux |
| Linux kernel (USN-7594-1) linux-image-6.14.0-1008-gcp_6.14.0-1008.8_amd64.deb | Linux |
| Linux kernel (USN-7594-1) linux-image-6.14.0-22-generic_6.14.0-22.22_amd64.deb | Linux |
| Linux kernel (USN-7594-1) linux-image-gcp_6.14.0-1008.8_amd64.deb | Linux |
| Linux kernel (USN-7594-1) linux-image-generic_6.14.0-22.22_amd64.deb | Linux |
| Linux kernel (USN-7594-1) linux-image-realtime_6.14.0-1004.4_amd64.deb | Linux |
| Linux kernel for Microsoft Azure Cloud systems (USN-7594-2) linux-image-6.14.0-1007-azure_6.14.0-1007.7_amd64.deb | Linux |
| Linux kernel for Microsoft Azure Cloud systems (USN-7594-2) linux-image-6.14.0-1007-azure-fde_6.14.0-1007.7_amd64.deb | Linux |
| Linux kernel for Microsoft Azure Cloud systems (USN-7594-2) linux-image-azure_6.14.0-1007.7_amd64.deb | Linux |
| Linux kernel for Microsoft Azure Cloud systems (USN-7594-2) linux-image-azure-fde_6.14.0-1007.7_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-7594-3) linux-image-6.14.0-1007-aws_6.14.0-1007.7_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-7594-3) linux-image-6.14.0-1007-oracle_6.14.0-1007.7_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-7594-3) linux-image-aws_6.14.0-1007.7+1_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-7594-3) linux-image-oracle_6.14.0-1007.7_amd64.deb | Linux |
| SUSE-SU-2025:02254-1(Public Cloud Module 15 SP7) kernel-source-azure-6.4.0-150700.20.6.1.noarch.rpm | Linux |
| SUSE-SU-2025:02254-1(Public Cloud Module 15 SP7) kernel-syms-azure-6.4.0-150700.20.6.1.x86_64.rpm | Linux |
| SUSE-SU-2025:02254-1(Public Cloud Module 15 SP7) kernel-azure-6.4.0-150700.20.6.1.x86_64.rpm | Linux |
| SUSE-SU-2025:02254-1(Public Cloud Module 15 SP7) kernel-azure-debuginfo-6.4.0-150700.20.6.1.x86_64.rpm | Linux |
| SUSE-SU-2025:02254-1(Public Cloud Module 15 SP7) kernel-azure-debugsource-6.4.0-150700.20.6.1.x86_64.rpm | Linux |
| SUSE-SU-2025:02254-1(Public Cloud Module 15 SP7) kernel-azure-devel-6.4.0-150700.20.6.1.x86_64.rpm | Linux |
| SUSE-SU-2025:02254-1(Public Cloud Module 15 SP7) kernel-azure-devel-debuginfo-6.4.0-150700.20.6.1.x86_64.rpm | Linux |
| SUSE-SU-2025:02254-1(Public Cloud Module 15 SP7) kernel-devel-azure-6.4.0-150700.20.6.1.noarch.rpm | Linux |
| SUSE-SU-2025:02307-1(Basesystem Module 15 SP7) kernel-default-6.4.0-150700.53.6.1.x86_64.rpm | Linux |
| SUSE-SU-2025:02307-1(Legacy Module 15 SP7) reiserfs-kmp-default-6.4.0-150700.53.6.1.x86_64.rpm | Linux |
| SUSE-SU-2025:02307-1(Legacy Module 15 SP7) reiserfs-kmp-default-debuginfo-6.4.0-150700.53.6.1.x86_64.rpm | Linux |
| SUSE-SU-2025:02307-1(Development Tools Module 15 SP7) kernel-syms-6.4.0-150700.53.6.1.x86_64.rpm | Linux |
| SUSE-SU-2025:02307-1(Legacy Module 15 SP7) kernel-default-debugsource-6.4.0-150700.53.6.1.x86_64.rpm | Linux |
| SUSE-SU-2025:02307-1(Basesystem Module 15 SP7) kernel-default-base-6.4.0-150700.53.6.1.150700.17.6.1.x86_64.rpm | Linux |
| SUSE-SU-2025:02307-1(Development Tools Module 15 SP7) kernel-source-6.4.0-150700.53.6.1.noarch.rpm | Linux |
| SUSE-SU-2025:02307-1(Basesystem Module 15 SP7) kernel-default-devel-debuginfo-6.4.0-150700.53.6.1.x86_64.rpm | Linux |
| SUSE-SU-2025:02307-1(Basesystem Module 15 SP7) kernel-default-devel-6.4.0-150700.53.6.1.x86_64.rpm | Linux |
| SUSE-SU-2025:02307-1(Development Tools Module 15 SP7) kernel-obs-build-debugsource-6.4.0-150700.53.6.1.x86_64.rpm | Linux |
| SUSE-SU-2025:02307-1(Development Tools Module 15 SP7) kernel-docs-6.4.0-150700.53.6.1.noarch.rpm | Linux |
| SUSE-SU-2025:02307-1(Basesystem Module 15 SP7) kernel-default-debuginfo-6.4.0-150700.53.6.1.x86_64.rpm | Linux |
| SUSE-SU-2025:02307-1(Development Tools Module 15 SP7) kernel-obs-build-6.4.0-150700.53.6.1.x86_64.rpm | Linux |
| SUSE-SU-2025:02307-1(Basesystem Module 15 SP7) kernel-devel-6.4.0-150700.53.6.1.noarch.rpm | Linux |
| SUSE-SU-2025:02307-1(Basesystem Module 15 SP7) kernel-macros-6.4.0-150700.53.6.1.noarch.rpm | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234