USN-7909-5: Linux kernel (Raspberry Pi) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM32 architecture; - ARM64 architecture; - MIPS architecture; - PowerPC architecture; - RISC-V architecture; - S39...

CVE-2025-2879

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-privileged user process to perform improper GPU processing operations to expose sensitive data.This issue affects...

CVE-2025-6349

Use After Free vulnerability in Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-privileged user process to perform improper GPU memory processing operations to gain access to already freed memory.This issue affects Valhall GPU Kernel Driver...

SUSE CVE-2025-40336

In the Linux kernel, the following vulnerability has been resolved: drm/gpusvm: fix hmmpfntomaporder usage Handle the case where the hmm range partially covers a huge page like 2M, otherwise we can potentially end up doing something nasty like mapping memory which is outside the range, and maybe...

PT-2026-2525

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.16.0-1289896.2.zuul.bf4f11df81c1410bbe901c4373305a31 Description The Linux kernel contains a flaw in the DRM/amdgpu subsystem related to a use-after-free UAF condition during GPU recovery. This issue arises fro...

EUVD-2025-201867

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: validate userq input args This will help on validating the userq input args, and rejecting for the invalid userq request at the IOCTLs first place...

CVE-2025-40339

The CVE-2025-40339 entry concerns the Linux kernel AMDGPU DRM path. Affected component: drm/amdgpu in the kernel; issue arises when an amdgpu_bo_va is fpriv->prt_va, causing the bo to be NULL and triggering a NULL-pointer scenario during vm_handle_moved. Root cause: nullptr error handling in v...

CVE-2025-40339

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix nullptr err of vmhandlemoved If a amdgpubova is fpriv-prtva, the bo of this one is always NULL. So, such kind of amdgpubova should be updated separately before amdgpuvmhandlemoved...

CVE-2025-40336 drm/gpusvm: fix hmm_pfn_to_map_order() usage

In the Linux kernel, the following vulnerability has been resolved: drm/gpusvm: fix hmmpfntomaporder usage Handle the case where the hmm range partially covers a huge page like 2M, otherwise we can potentially end up doing something nasty like mapping memory which is outside the range, and maybe...

CVE-2023-53816

In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: fix potential kgdmem UAFs kgdmem pointers returned by kfdprocessdevicetranslatehandle are only guaranteed to be valid while p-mutex is held. As soon as the mutex is unlocked, another thread can free the BO...

Linux Distros Unpatched Vulnerability : CVE-2025-40335

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drm/amdgpu: validate userq input args This will help on validating the userq input args, and rejecting for the invalid userq request at the IOCTLs first place...

drm/amdgpu: hide VRAM sysfs attributes on GPUs without VRAM

...

EUVD-2025-201566

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: hide VRAM sysfs attributes on GPUs without VRAM Otherwise accessing them can cause a crash...

CVE-2025-40289

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: hide VRAM sysfs attributes on GPUs without VRAM Otherwise accessing them can cause a crash...

CVE-2025-40289 drm/amdgpu: hide VRAM sysfs attributes on GPUs without VRAM

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: hide VRAM sysfs attributes on GPUs without VRAM Otherwise accessing them can cause a crash...

CVE-2025-40289

CVE-2025-40289 affects the Linux kernel, specifically the DRM/AMDGPU subsystem. The vulnerability arises from a flaw where VRAM-related sysfs attributes were not hidden on GPUs that do not have VRAM, which could lead to a crash if accessed. The fix implemented in the referenced advisories hides t...

CVE-2025-40289

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: hide VRAM sysfs attributes on GPUs without VRAM Otherwise accessing them can cause a crash...

CVE-2025-40288

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix NULL pointer dereference in VRAM logic for APU devices Previously, APU platforms and other scenarios with uninitialized VRAM managers triggered a NULL pointer dereference in ttmresourcemanagerusage. The root cause...

CVE-2025-40225

In the Linux kernel, the following vulnerability has been resolved: drm/panthor: Fix kernel panic on partial unmap of a GPU VA region This commit address a kernel panic issue that can happen if Userspace tries to partially unmap a GPU virtual region aka drmgpuva. The VMBIND interface allows parti...

USN-7909-4: Linux kernel vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM32 architecture; - ARM64 architecture; - MIPS architecture; - PowerPC architecture; - RISC-V architecture; - S39...