CVE-2025-38515 drm/sched: Increment job count before swapping tail spsc queue

🗓️ 16 Aug 2025 10:55:02Reported by LinuxType

drm/sched: fix race spsc_queue_push and run-job; increment job count before appending to SPSC queue.

Reporter	Title	Published	Views	Family All 245
AstraLinux	Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12	1 Nov 202510:54	–	astralinux
CBLMariner	CVE-2025-38515 affecting package kernel for versions less than 6.6.104.2-1	1 Oct 202519:21	–	cbl_mariner
CBLMariner	CVE-2025-38515 affecting package kernel for versions less than 5.15.200.1-1	9 Mar 202614:32	–	cbl_mariner
CNNVD	Linux kernel 安全漏洞	16 Aug 202500:00	–	cnnvd
CVE	CVE-2025-38515	16 Aug 202510:55	–	cve
Debian	[SECURITY] [DLA 4327-1] linux security update	13 Oct 202509:16	–	debian
Debian	[SECURITY] [DLA 4328-1] linux-6.1 security update	13 Oct 202509:16	–	debian
Debian CVE	CVE-2025-38515	16 Aug 202510:55	–	debiancve
Tenable Nessus	Debian dla-4327 : ata-modules-5.10.0-35-armmp-di - security update	13 Oct 202500:00	–	nessus
Tenable Nessus	Debian dla-4328 : linux-config-6.1 - security update	13 Oct 202500:00	–	nessus

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "include/drm/spsc_queue.h"
    ],
    "versions": [
      {
        "version": "27105db6c63a571b91d01e749d026105a1e63bcf",
        "lessThan": "549a9c78c3ea6807d0dc4162a4f5ba59f217d5a0",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "27105db6c63a571b91d01e749d026105a1e63bcf",
        "lessThan": "e62f51d0ec8a9baf324caf9a564f8e318d36a551",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "27105db6c63a571b91d01e749d026105a1e63bcf",
        "lessThan": "ef841f8e4e1ff67817ca899bedc5ebb00847c0a7",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "27105db6c63a571b91d01e749d026105a1e63bcf",
        "lessThan": "f9a4f28a4fc4ee453a92a9abbe36e26224d17749",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "27105db6c63a571b91d01e749d026105a1e63bcf",
        "lessThan": "c64f5310530baf75328292f9b9f3f2961d185183",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "27105db6c63a571b91d01e749d026105a1e63bcf",
        "lessThan": "e2d6547dc8b9b332f9bc00875197287a6a4db65a",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "27105db6c63a571b91d01e749d026105a1e63bcf",
        "lessThan": "ef58a95457466849fa7b31fd3953801a5af0f58b",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "27105db6c63a571b91d01e749d026105a1e63bcf",
        "lessThan": "8af39ec5cf2be522c8eb43a3d8005ed59e4daaee",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "include/drm/spsc_queue.h"
    ],
    "versions": [
      {
        "version": "4.16",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "4.16",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "5.4.296",
        "lessThanOrEqual": "5.4.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "5.10.240",
        "lessThanOrEqual": "5.10.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "5.15.189",
        "lessThanOrEqual": "5.15.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.1.146",
        "lessThanOrEqual": "6.1.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.6.99",
        "lessThanOrEqual": "6.6.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.12.39",
        "lessThanOrEqual": "6.12.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.15.7",
        "lessThanOrEqual": "6.15.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.16",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

Source	Link
git	www.git.kernel.org/stable/c/ef841f8e4e1ff67817ca899bedc5ebb00847c0a7
git	www.git.kernel.org/stable/c/e2d6547dc8b9b332f9bc00875197287a6a4db65a
git	www.git.kernel.org/stable/c/8af39ec5cf2be522c8eb43a3d8005ed59e4daaee
git	www.git.kernel.org/stable/c/ef58a95457466849fa7b31fd3953801a5af0f58b
git	www.git.kernel.org/stable/c/549a9c78c3ea6807d0dc4162a4f5ba59f217d5a0
git	www.git.kernel.org/stable/c/e62f51d0ec8a9baf324caf9a564f8e318d36a551
git	www.git.kernel.org/stable/c/c64f5310530baf75328292f9b9f3f2961d185183
git	www.git.kernel.org/stable/c/f9a4f28a4fc4ee453a92a9abbe36e26224d17749

11 May 2026 21:29Current

EPSS0.00066