CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-38309

In the Linux kernel, the following vulnerability has been resolved: drm/xe/vm: move xe_svm_init() earlier In xe_vm_close_and_put() we need to be able to call xe_svm_fini(), however during vm creation we can call this on the error path, before having actually initialised the svm state, leading to various splats followed by a fatal NPD. (cherry picked from commit 4f296d77cf49fcb5f90b4674123ad7f3a0676165)

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 7.7%

CVSS Severity

CVSS v3 Score 5.5

References

https://git.kernel.org/stable/c/8cf8cde41ad01150afbd1327ad1942387787f7fd
https://git.kernel.org/stable/c/f5e6a6a8aa46d44ec7a240766cf3b7dd077718b9

Products affected by CVE-2025-38309

Linux » Linux Kernel » Version: 6.15

cpe:2.3:o:linux:linux_kernel:6.15
Linux » Linux Kernel » Version: 6.15.1

cpe:2.3:o:linux:linux_kernel:6.15.1
Linux » Linux Kernel » Version: 6.15.2

cpe:2.3:o:linux:linux_kernel:6.15.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-38309

Products

Pricing

Contact Us