CVE-2025-39740

In the Linux kernel, the following vulnerability has been resolved: drm/xe/migrate: prevent potential UAF If we hit the error path, the previous fence if there is one has already been put prior to this, so doing a fencewait could lead to UAF. Tweak the flow to do to the put until after we do the...

CVE-2025-39741 drm/xe/migrate: don't overflow max copy size

In the Linux kernel, the following vulnerability has been resolved: drm/xe/migrate: don't overflow max copy size With non-page aligned copy, we need to use 4 byte aligned pitch, however the size itself might still be close to our maximum of 8M, and so the dimensions of the copy can easily exceed...