CVE-2025-38410 drm/msm: Fix a fence leak in submit error path

In the Linux kernel, the following vulnerability has been resolved: drm/msm: Fix a fence leak in submit error path In error paths, we could unref the submit without calling drmschedentitypushjob, so msmjobfree will never get called. Since drmschedjobcleanup will NULL out the sfence, we can use th...

Qualcomm Adreno GPU MSM Driver - perfcounter Query Heap Overflow

/ Source: https://code.google.com/p/google-security-research/issues/detail?id=734 The Adreno GPU driver for the MSM Linux kernel contains a heap overflow in the IOCTLKGSLPERFCOUNTERQUERY ioctl command. The bug results from an incorrect conversion to a signed type when calculating the minimum coun...