CVE-2025-38596
In the Linux kernel, the following vulnerability has been resolved: drm/panthor: Fix UAF in panthor_gem_create_with_handle() debugfs code The object is potentially already gone after the drm_gem_object_put(). In general the object should be fully constructed before calling drm_gem_handle_create(), except the debugfs tracking uses a separate lock and list and separate flag to denotate whether the object is actually initialized. Since I'm touching this all anyway simplify this by only adding the object to the debugfs when it's ready for that, which allows us to delete that separate flag. panthor_gem_debugfs_bo_rm() already checks whether we've actually been added to the list or this is some error path cleanup. v2: Fix build issues for !CONFIG_DEBUGFS (Adrián) v3: Add linebreak and remove outdated comment (Liviu)
EPSS 0.03% · 8.7th percentile
Risk Scores
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux | *, 0, 6.16.1 |
| linux | linux_kernel | 6.16, 6.16, 6.16 |
Exploit Intelligence
- https://git.kernel.org/stable/c/5f2be12442db6a2904e6e31b0e3b5ad5aebf868b (circl)
- https://git.kernel.org/stable/c/fe69a391808404977b1f002a6e7447de3de7a88e (circl)
- CVE-2025-38578.yara (github-yara)
- CVE-2025-38578.yara (github-yara)
- CVE-2025-38578.yara (github-yara)
- CVE-2025-38578.yara (github-yara)
- CVE-2025-38578.yara (github-yara)
- TestCaseRule-CVE-2025-38555.yara (github-yara)
- TestCaseRule-CVE-2025-38555.yara (github-yara)
- TestCaseRule-CVE-2025-38555.yara (github-yara)
…and 2 more exploits
Timeline
- Jan 21, 1970 Security Advisory
- Aug 19, 2025 CVE Published
- Aug 20, 2025 EPSS Score
- Aug 20, 2025 Coalition ESS Score
- Aug 26, 2025 Coalition ESS Score
- Aug 28, 2025 EPSS Score
- Sep 5, 2025 EPSS Score
- Sep 13, 2025 EPSS Score
- Sep 21, 2025 EPSS Score
- Sep 29, 2025 EPSS Score
- Oct 4, 2025 Coalition ESS Score
- Oct 6, 2025 Coalition ESS Score