CVE-2025-39882

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2025-39882
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-39882.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2025-39882
Downstream
Related
Published
2025-09-23T06:00:51Z
Modified
2025-10-18T07:27:33.604628Z
Summary
drm/mediatek: fix potential OF node use-after-free
Details

In the Linux kernel, the following vulnerability has been resolved:

drm/mediatek: fix potential OF node use-after-free

The foreachchildofnode() helper drops the reference it takes to each node as it iterates over children and an explicit ofnodeput() is only needed when exiting the loop early.

Drop the recently introduced bogus additional reference count decrement at each iteration that could potentially lead to a use-after-free.

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
7d98166183d627c0b9daca7672b2191fae0f8a03
Fixed
b2fbe0f9f80b9cfa1e06ddcf8b863d918394ef1d
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
31ce7c089b50c3d3056c37e0e25e7535e4428ae1
Fixed
b58a26cdd4795c1ce6a80e38e9348885555dacd6
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
fae58d0155a979a8c414bbc12db09dd4b2f910d0
Fixed
c4901802ed1ce859242e10af06e6a7752cba0497
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
1f403699c40f0806a707a9a6eed3b8904224021a
Fixed
4de37a48b6b58faaded9eb765047cf0d8785ea18

Affected versions

v6.*

v6.12.45
v6.12.46
v6.12.47
v6.16.5
v6.16.6
v6.16.7
v6.6.105
v6.6.106

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
6.6.105
Fixed
6.6.107
Type
ECOSYSTEM
Events
Introduced
6.12.45
Fixed
6.12.48
Type
ECOSYSTEM
Events
Introduced
6.16.5
Fixed
6.16.8