[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2025-40247":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T14:53:31.930Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":14,"duplicates":31,"related":32,"reserved_at":9,"published_at":33,"modified_at":34,"state":35,"summary":36,"references_raw":40,"kevs":51,"epss":52,"epss_history":55,"metrics":323,"affected":324},"CVE-2025-40247","In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/msm: Fix pgtable prealloc error path\n\nThe following splat was reported:\n\n    Unable to handle kernel NULL pointer dereference at virtual address 0000000000000010\n    Mem abort info:\n      ESR = 0x0000000096000004\n      EC = 0x25: DABT (current EL), IL = 32 bits\n      SET = 0, FnV = 0\n      EA = 0, S1PTW = 0\n      FSC = 0x04: level 0 translation fault\n    Data abort info:\n      ISV = 0, ISS = 0x00000004, ISS2 = 0x00000000\n      CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n      GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n    user pgtable: 4k pages, 48-bit VAs, pgdp=00000008d0fd8000\n    [0000000000000010] pgd=0000000000000000, p4d=0000000000000000\n    Internal error: Oops: 0000000096000004 [#1]  SMP\n    CPU: 5 UID: 1000 PID: 149076 Comm: Xwayland Tainted: G S                  6.16.0-rc2-00809-g0b6974bb4134-dirty #367 PREEMPT\n    Tainted: [S]=CPU_OUT_OF_SPEC\n    Hardware name: Qualcomm Technologies, Inc. SM8650 HDK (DT)\n    pstate: 83400005 (Nzcv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--)\n    pc : build_detached_freelist+0x28/0x224\n    lr : kmem_cache_free_bulk.part.0+0x38/0x244\n    sp : ffff000a508c7a20\n    x29: ffff000a508c7a20 x28: ffff000a508c7d50 x27: ffffc4e49d16f350\n    x26: 0000000000000058 x25: 00000000fffffffc x24: 0000000000000000\n    x23: ffff00098c4e1450 x22: 00000000fffffffc x21: 0000000000000000\n    x20: ffff000a508c7af8 x19: 0000000000000002 x18: 00000000000003e8\n    x17: ffff000809523850 x16: ffff000809523820 x15: 0000000000401640\n    x14: ffff000809371140 x13: 0000000000000130 x12: ffff0008b5711e30\n    x11: 00000000001058fa x10: 0000000000000a80 x9 : ffff000a508c7940\n    x8 : ffff000809371ba0 x7 : 781fffe033087fff x6 : 0000000000000000\n    x5 : ffff0008003cd000 x4 : 781fffe033083fff x3 : ffff000a508c7af8\n    x2 : fffffdffc0000000 x1 : 0001000000000000 x0 : ffff0008001a6a00\n    Call trace:\n     build_detached_freelist+0x28/0x224 (P)\n     kmem_cache_free_bulk.part.0+0x38/0x244\n     kmem_cache_free_bulk+0x10/0x1c\n     msm_iommu_pagetable_prealloc_cleanup+0x3c/0xd0\n     msm_vma_job_free+0x30/0x240\n     msm_ioctl_vm_bind+0x1d0/0x9a0\n     drm_ioctl_kernel+0x84/0x104\n     drm_ioctl+0x358/0x4d4\n     __arm64_sys_ioctl+0x8c/0xe0\n     invoke_syscall+0x44/0x100\n     el0_svc_common.constprop.0+0x3c/0xe0\n     do_el0_svc+0x18/0x20\n     el0_svc+0x30/0x100\n     el0t_64_sync_handler+0x104/0x130\n     el0t_64_sync+0x170/0x174\n    Code: aa0203f5 b26287e2 f2dfbfe2 aa0303f4 (f8737ab6)\n    ---[ end trace 0000000000000000 ]---\n\nSince msm_vma_job_free() is called directly from the ioctl, this looks\nlike an error path cleanup issue.  Which I think results from\nprealloc_cleanup() called without a preceding successful\nprealloc_allocate() call.  So handle that case better.\n\nPatchwork: https://patchwork.freedesktop.org/patch/678677/",null,[],[],[],[],[15,17,19,21,23,25,27,29],{"_key":16},"DEBIAN-CVE-2025-40247",{"_key":18},"UBUNTU-CVE-2025-40247",{"_key":20},"USN-8094-1",{"_key":22},"USN-8094-2",{"_key":24},"USN-8094-3",{"_key":26},"USN-8094-4",{"_key":28},"USN-8094-5",{"_key":30},"USN-8152-1",[],[],"2025-12-04T16:08:10.696Z","2026-05-11T21:45:38.393Z","Deferred",{"cisa_kev":37,"cisa_ransomware":37,"cisa_vendor":9,"epss_severity":38,"epss_score":39,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":35},false,"low",0.00026,[41,47],{"url":42,"sources":43,"tags":46},"https://git.kernel.org/stable/c/b865da18b6cb878f33b5920693d03f23b9c4d1a3",[44,45],"cve.org","nvd",[],{"url":48,"sources":49,"tags":50},"https://git.kernel.org/stable/c/830d68f2cb8ab6fb798bb9555016709a9e012af0",[44,45],[],[],{"date":53,"score":39,"percentile":54},"2026-06-04",0.0788,[56,60,63,66,69,72,76,79,82,85,88,91,94,97,100,103,106,109,112,115,118,121,124,127,129,132,135,138,141,144,147,150,153,156,159,162,165,168,171,174,177,180,183,186,189,192,195,198,200,203,206,209,212,215,218,221,224,227,230,233,236,238,241,244,247,250,252,254,258,261,264,267,270,273,276,279,282,285,288,290,293,296,299,302,305,308,311,314,317,320],{"date":57,"score":58,"percentile":59},"2025-12-05",0.00018,0.03912,{"date":61,"score":58,"percentile":62},"2025-12-06",0.03929,{"date":64,"score":58,"percentile":65},"2025-12-07",0.03932,{"date":67,"score":58,"percentile":68},"2025-12-08",0.03941,{"date":70,"score":58,"percentile":71},"2025-12-09",0.03994,{"date":73,"score":74,"percentile":75},"2025-12-10",0.00024,0.05766,{"date":77,"score":74,"percentile":78},"2025-12-11",0.05762,{"date":80,"score":74,"percentile":81},"2025-12-12",0.05793,{"date":83,"score":74,"percentile":84},"2025-12-13",0.05832,{"date":86,"score":74,"percentile":87},"2025-12-14",0.05804,{"date":89,"score":74,"percentile":90},"2025-12-15",0.05802,{"date":92,"score":74,"percentile":93},"2025-12-16",0.05819,{"date":95,"score":74,"percentile":96},"2025-12-17",0.05882,{"date":98,"score":74,"percentile":99},"2025-12-18",0.05929,{"date":101,"score":74,"percentile":102},"2025-12-19",0.05916,{"date":104,"score":74,"percentile":105},"2025-12-20",0.05909,{"date":107,"score":74,"percentile":108},"2025-12-21",0.05898,{"date":110,"score":74,"percentile":111},"2025-12-22",0.05865,{"date":113,"score":74,"percentile":114},"2025-12-23",0.05873,{"date":116,"score":74,"percentile":117},"2025-12-24",0.05907,{"date":119,"score":74,"percentile":120},"2025-12-25",0.0594,{"date":122,"score":74,"percentile":123},"2025-12-26",0.05937,{"date":125,"score":74,"percentile":126},"2025-12-27",0.0593,{"date":128,"score":74,"percentile":126},"2025-12-28",{"date":130,"score":74,"percentile":131},"2025-12-29",0.05913,{"date":133,"score":74,"percentile":134},"2025-12-30",0.05921,{"date":136,"score":74,"percentile":137},"2025-12-31",0.05957,{"date":139,"score":74,"percentile":140},"2026-01-01",0.0602,{"date":142,"score":74,"percentile":143},"2026-01-02",0.06016,{"date":145,"score":74,"percentile":146},"2026-01-03",0.05979,{"date":148,"score":74,"percentile":149},"2026-01-04",0.05891,{"date":151,"score":39,"percentile":152},"2026-01-05",0.06567,{"date":154,"score":39,"percentile":155},"2026-01-06",0.06573,{"date":157,"score":39,"percentile":158},"2026-01-07",0.06598,{"date":160,"score":39,"percentile":161},"2026-01-08",0.06654,{"date":163,"score":39,"percentile":164},"2026-01-09",0.06666,{"date":166,"score":39,"percentile":167},"2026-01-10",0.06702,{"date":169,"score":39,"percentile":170},"2026-01-11",0.0669,{"date":172,"score":39,"percentile":173},"2026-01-12",0.06657,{"date":175,"score":39,"percentile":176},"2026-01-13",0.06642,{"date":178,"score":39,"percentile":179},"2026-01-14",0.06762,{"date":181,"score":39,"percentile":182},"2026-01-15",0.06766,{"date":184,"score":39,"percentile":185},"2026-01-16",0.06777,{"date":187,"score":39,"percentile":188},"2026-01-17",0.06793,{"date":190,"score":39,"percentile":191},"2026-01-18",0.0677,{"date":193,"score":39,"percentile":194},"2026-01-19",0.06723,{"date":196,"score":39,"percentile":197},"2026-01-20",0.06685,{"date":199,"score":39,"percentile":197},"2026-01-21",{"date":201,"score":39,"percentile":202},"2026-01-22",0.06662,{"date":204,"score":39,"percentile":205},"2026-01-23",0.0673,{"date":207,"score":39,"percentile":208},"2026-01-24",0.06772,{"date":210,"score":39,"percentile":211},"2026-01-25",0.06753,{"date":213,"score":39,"percentile":214},"2026-01-26",0.06738,{"date":216,"score":39,"percentile":217},"2026-01-27",0.06726,{"date":219,"score":39,"percentile":220},"2026-01-28",0.06701,{"date":222,"score":39,"percentile":223},"2026-01-29",0.06699,{"date":225,"score":39,"percentile":226},"2026-01-30",0.06715,{"date":228,"score":39,"percentile":229},"2026-01-31",0.06737,{"date":231,"score":39,"percentile":232},"2026-02-01",0.06778,{"date":234,"score":39,"percentile":235},"2026-02-02",0.06763,{"date":237,"score":39,"percentile":179},"2026-02-03",{"date":239,"score":39,"percentile":240},"2026-02-04",0.0679,{"date":242,"score":39,"percentile":243},"2026-02-05",0.06841,{"date":245,"score":39,"percentile":246},"2026-02-06",0.06874,{"date":248,"score":39,"percentile":249},"2026-02-07",0.06885,{"date":251,"score":39,"percentile":246},"2026-02-08",{"date":253,"score":39,"percentile":243},"2026-02-09",{"date":255,"score":256,"percentile":257},"2026-02-10",0.00027,0.07245,{"date":259,"score":256,"percentile":260},"2026-02-11",0.07279,{"date":262,"score":256,"percentile":263},"2026-02-12",0.07309,{"date":265,"score":256,"percentile":266},"2026-02-13",0.07229,{"date":268,"score":256,"percentile":269},"2026-02-14",0.07221,{"date":271,"score":256,"percentile":272},"2026-02-15",0.07242,{"date":274,"score":256,"percentile":275},"2026-02-16",0.0723,{"date":277,"score":256,"percentile":278},"2026-02-17",0.07204,{"date":280,"score":256,"percentile":281},"2026-02-18",0.07551,{"date":283,"score":256,"percentile":284},"2026-02-19",0.07616,{"date":286,"score":256,"percentile":287},"2026-02-20",0.07612,{"date":289,"score":256,"percentile":284},"2026-02-21",{"date":291,"score":256,"percentile":292},"2026-02-22",0.07621,{"date":294,"score":256,"percentile":295},"2026-02-23",0.07611,{"date":297,"score":256,"percentile":298},"2026-02-24",0.07599,{"date":300,"score":256,"percentile":301},"2026-02-25",0.07515,{"date":303,"score":256,"percentile":304},"2026-02-26",0.07464,{"date":306,"score":256,"percentile":307},"2026-02-27",0.07474,{"date":309,"score":256,"percentile":310},"2026-02-28",0.07486,{"date":312,"score":256,"percentile":313},"2026-03-01",0.07533,{"date":315,"score":256,"percentile":316},"2026-03-02",0.07475,{"date":318,"score":256,"percentile":319},"2026-03-03",0.07482,{"date":321,"score":256,"percentile":322},"2026-03-04",0.07428,[],[325],{"ecosystem":9,"name":326,"vendor":327,"product":327,"cpe_part":328,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":329},"Linux","linux","a",[330,337,340],{"version":331,"is_range":332,"range_type":44,"version_start":333,"version_start_type":334,"version_end":335,"version_end_type":336,"fixed_in":9},">= 0cf6c71d70d8aa39b8fd0e39c9009602a0e0d300, \u003C b865da18b6cb878f33b5920693d03f23b9c4d1a3",true,"0cf6c71d70d8aa39b8fd0e39c9009602a0e0d300","including","b865da18b6cb878f33b5920693d03f23b9c4d1a3","excluding",{"version":338,"is_range":332,"range_type":44,"version_start":333,"version_start_type":334,"version_end":339,"version_end_type":336,"fixed_in":9},">= 0cf6c71d70d8aa39b8fd0e39c9009602a0e0d300, \u003C 830d68f2cb8ab6fb798bb9555016709a9e012af0","830d68f2cb8ab6fb798bb9555016709a9e012af0",{"version":341,"is_range":37,"range_type":44,"version_start":341,"version_start_type":334,"version_end":341,"version_end_type":334,"fixed_in":9},"3.12"]