CVE-2025-71298 PUBLISHED

drm/tests: shmem: Hold reservation lock around madvise

Assigner: Linux
Reserved: 06.05.2026 Published: 08.05.2026 Updated: 08.05.2026

In the Linux kernel, the following vulnerability has been resolved:

drm/tests: shmem: Hold reservation lock around madvise

Acquire and release the GEM object's reservation lock around calls to the object's madvide operation. The tests use drm_gem_shmem_madvise_locked(), which led to errors such as show below.

[ 58.339389] WARNING: CPU: 1 PID: 1352 at drivers/gpu/drm/drm_gem_shmem_helper.c:499 drm_gem_shmem_madvise_locked+0xde/0x140

Only export the new helper drm_gem_shmem_madvise() for Kunit tests. This is not an interface for regular drivers.

Product Status

Vendor Linux
Product Linux
Versions Default: unaffected
  • affected from 954907f7147dc43e0d1cd4d430c21d143d5fdf55 to 9cc77691b5fd615625955cedf726da57543088f1 (excl.)
  • affected from 954907f7147dc43e0d1cd4d430c21d143d5fdf55 to 07cfcab370da06f26c273306571cbb0bfa3b9c52 (excl.)
  • affected from 954907f7147dc43e0d1cd4d430c21d143d5fdf55 to 607d07d8cc0b835a8701259f08a03dc149b79b4f (excl.)
Vendor Linux
Product Linux
Versions Default: affected
  • Version 6.16 is affected
  • unaffected from 0 to 6.16 (excl.)
  • unaffected from 6.18.16 to 6.18.* (incl.)
  • unaffected from 6.19.6 to 6.19.* (incl.)
  • unaffected from 7.0 to * (incl.)

References