fkie_nvd - fkie_cve-2025-37930

fkie_cve-2025-37930

Vulnerability from fkie_nvd

Published

2025-05-20 16:15

Modified

2025-06-04 13:15

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: drm/nouveau: Fix WARN_ON in nouveau_fence_context_kill() Nouveau is mostly designed in a way that it's expected that fences only ever get signaled through nouveau_fence_signal(). However, in at least one other place, nouveau_fence_done(), can signal fences, too. If that happens (race) a signaled fence remains in the pending list for a while, until it gets removed by nouveau_fence_update(). Should nouveau_fence_context_kill() run in the meantime, this would be a bug because the function would attempt to set an error code on an already signaled fence. Have nouveau_fence_context_kill() check for a fence being signaled.

References

	URL	Tags
	416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/0453825167ecc816ec15c736e52316f69db0deb9
	416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/126f5c6e0cb84e5c6f7a3a856d799d85668fb38e
	416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/2ec0f5f6d4768f292c8406ed92fa699f184577e5
	416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/39d6e889c0b19a2c79e1c74c843ea7c2d0f99c28
	416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/47ca11836c35c5698088fd87f7fb4b0ffa217e17
	416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/b771b2017260ffc3a8d4e81266619649bffcb242
	416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/bbe5679f30d7690a9b6838a583b9690ea73fe0e9

Impacted products

	Vendor	Product	Version

JSON

To clipboard

{
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/nouveau: Fix WARN_ON in nouveau_fence_context_kill()\n\nNouveau is mostly designed in a way that it\u0027s expected that fences only\never get signaled through nouveau_fence_signal(). However, in at least\none other place, nouveau_fence_done(), can signal fences, too. If that\nhappens (race) a signaled fence remains in the pending list for a while,\nuntil it gets removed by nouveau_fence_update().\n\nShould nouveau_fence_context_kill() run in the meantime, this would be\na bug because the function would attempt to set an error code on an\nalready signaled fence.\n\nHave nouveau_fence_context_kill() check for a fence being signaled."
    },
    {
      "lang": "es",
      "value": "En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: drm/nouveau: Correcci\u00f3n de WARN_ON en nouveau_fence_context_kill(). Nouveau est\u00e1 dise\u00f1ado principalmente de tal manera que se espera que las vallas solo se se\u00f1alicen mediante nouveau_fence_signal(). Sin embargo, en al menos otro lugar, nouveau_fence_done(), tambi\u00e9n puede se\u00f1alizar vallas. Si esto sucede (ejecuci\u00f3n), una valla se\u00f1alizada permanece en la lista de pendientes durante un tiempo, hasta que nouveau_fence_update() la elimina. Si nouveau_fence_context_kill() se ejecuta mientras tanto, esto ser\u00eda un error porque la funci\u00f3n intentar\u00eda establecer un c\u00f3digo de error en una valla ya se\u00f1alizada. Haga que nouveau_fence_context_kill() compruebe si hay una valla se\u00f1alizada."
    }
  ],
  "id": "CVE-2025-37930",
  "lastModified": "2025-06-04T13:15:27.087",
  "metrics": {},
  "published": "2025-05-20T16:15:29.600",
  "references": [
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "url": "https://git.kernel.org/stable/c/0453825167ecc816ec15c736e52316f69db0deb9"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "url": "https://git.kernel.org/stable/c/126f5c6e0cb84e5c6f7a3a856d799d85668fb38e"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "url": "https://git.kernel.org/stable/c/2ec0f5f6d4768f292c8406ed92fa699f184577e5"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "url": "https://git.kernel.org/stable/c/39d6e889c0b19a2c79e1c74c843ea7c2d0f99c28"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "url": "https://git.kernel.org/stable/c/47ca11836c35c5698088fd87f7fb4b0ffa217e17"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "url": "https://git.kernel.org/stable/c/b771b2017260ffc3a8d4e81266619649bffcb242"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "url": "https://git.kernel.org/stable/c/bbe5679f30d7690a9b6838a583b9690ea73fe0e9"
    }
  ],
  "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
  "vulnStatus": "Awaiting Analysis"
}

CVE-2025-37930 (GCVE-0-2025-37930)

Vulnerability from cvelistv5

Published

2025-05-20 15:21

Modified

2025-06-04 12:57

Severity ?

Summary

References

URL

Tags

	https://git.kernel.org/stable/c/39d6e889c0b19a2c79e1c74c843ea7c2d0f99c28
	https://git.kernel.org/stable/c/2ec0f5f6d4768f292c8406ed92fa699f184577e5
	https://git.kernel.org/stable/c/47ca11836c35c5698088fd87f7fb4b0ffa217e17
	https://git.kernel.org/stable/c/126f5c6e0cb84e5c6f7a3a856d799d85668fb38e
	https://git.kernel.org/stable/c/b771b2017260ffc3a8d4e81266619649bffcb242
	https://git.kernel.org/stable/c/0453825167ecc816ec15c736e52316f69db0deb9
	https://git.kernel.org/stable/c/bbe5679f30d7690a9b6838a583b9690ea73fe0e9

Impacted products

Vendor

Product

Version

Linux

Version: ea13e5abf807ea912ce84eef6a1946b9a38c6508
Version: ea13e5abf807ea912ce84eef6a1946b9a38c6508
Version: ea13e5abf807ea912ce84eef6a1946b9a38c6508
Version: ea13e5abf807ea912ce84eef6a1946b9a38c6508
Version: ea13e5abf807ea912ce84eef6a1946b9a38c6508
Version: ea13e5abf807ea912ce84eef6a1946b9a38c6508
Version: ea13e5abf807ea912ce84eef6a1946b9a38c6508

Linux

Version: 5.6

Show details on NVD website