AZL-73034

See a problem?

Import Source

https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-73034.json

JSON Data

https://api.test.osv.dev/v1/vulns/AZL-73034

Upstream

CVE-2025-38410

Published

2025-07-25T14:15:32Z

Modified

2026-04-01T05:22:36.086788Z

Summary

CVE-2025-38410 affecting package kernel for versions less than 5.15.200.1-1

Details

In the Linux kernel, the following vulnerability has been resolved:

drm/msm: Fix a fence leak in submit error path

In error paths, we could unref the submit without calling drmschedentitypushjob(), so msmjobfree() will never get called. Since drmschedjobcleanup() will NULL out the sfence, we can use that to detect this case.

Patchwork: https://patchwork.freedesktop.org/patch/653584/

References

https://nvd.nist.gov/vuln/detail/CVE-2025-38410

Affected packages

Azure Linux:2 / kernel

Package

Name: kernel
Purl: pkg:rpm/azure-linux/kernel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

5.15.200.1-1

Database specific

source

"https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-73034.json"