{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"cveId":"CVE-2025-71301","assignerOrgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","state":"PUBLISHED","assignerShortName":"Linux","dateReserved":"2026-05-08T13:14:33.087Z","datePublished":"2026-05-08T13:15:22.100Z","dateUpdated":"2026-05-11T21:57:33.226Z"},"containers":{"cna":{"providerMetadata":{"orgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","shortName":"Linux","dateUpdated":"2026-05-11T21:57:33.226Z"},"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/tests: shmem: Hold reservation lock around vmap/vunmap\n\nAcquire and release the GEM object's reservation lock around vmap and\nvunmap operations. The tests use vmap_locked, which led to errors such\nas show below.\n\n[  122.292030] WARNING: CPU: 3 PID: 1413 at drivers/gpu/drm/drm_gem_shmem_helper.c:390 drm_gem_shmem_vmap_locked+0x3a3/0x6f0\n\n[  122.468066] WARNING: CPU: 3 PID: 1413 at drivers/gpu/drm/drm_gem_shmem_helper.c:293 drm_gem_shmem_pin_locked+0x1fe/0x350\n\n[  122.563504] WARNING: CPU: 3 PID: 1413 at drivers/gpu/drm/drm_gem_shmem_helper.c:234 drm_gem_shmem_get_pages_locked+0x23c/0x370\n\n[  122.662248] WARNING: CPU: 2 PID: 1413 at drivers/gpu/drm/drm_gem_shmem_helper.c:452 drm_gem_shmem_vunmap_locked+0x101/0x330\n\nOnly export the new vmap/vunmap helpers for Kunit tests. These are\nnot interfaces for regular drivers."}],"affected":[{"product":"Linux","vendor":"Linux","defaultStatus":"unaffected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["drivers/gpu/drm/drm_gem_shmem_helper.c","drivers/gpu/drm/tests/drm_gem_shmem_test.c","include/drm/drm_gem_shmem_helper.h"],"versions":[{"version":"954907f7147dc43e0d1cd4d430c21d143d5fdf55","lessThan":"6b953d92f2f29e74b125617c6f00300fa1bed97e","status":"affected","versionType":"git"},{"version":"954907f7147dc43e0d1cd4d430c21d143d5fdf55","lessThan":"e7b7022f11d3cf281c726117478696b83681bf11","status":"affected","versionType":"git"},{"version":"954907f7147dc43e0d1cd4d430c21d143d5fdf55","lessThan":"cda83b099f117f2a28a77bf467af934cb39e49cf","status":"affected","versionType":"git"}]},{"product":"Linux","vendor":"Linux","defaultStatus":"affected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["drivers/gpu/drm/drm_gem_shmem_helper.c","drivers/gpu/drm/tests/drm_gem_shmem_test.c","include/drm/drm_gem_shmem_helper.h"],"versions":[{"version":"6.16","status":"affected"},{"version":"0","lessThan":"6.16","status":"unaffected","versionType":"semver"},{"version":"6.18.16","lessThanOrEqual":"6.18.*","status":"unaffected","versionType":"semver"},{"version":"6.19.6","lessThanOrEqual":"6.19.*","status":"unaffected","versionType":"semver"},{"version":"7.0","lessThanOrEqual":"*","status":"unaffected","versionType":"original_commit_for_fix"}]}],"cpeApplicability":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.16","versionEndExcluding":"6.18.16"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.16","versionEndExcluding":"6.19.6"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.16","versionEndExcluding":"7.0"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/6b953d92f2f29e74b125617c6f00300fa1bed97e"},{"url":"https://git.kernel.org/stable/c/e7b7022f11d3cf281c726117478696b83681bf11"},{"url":"https://git.kernel.org/stable/c/cda83b099f117f2a28a77bf467af934cb39e49cf"}],"title":"drm/tests: shmem: Hold reservation lock around vmap/vunmap","x_generator":{"engine":"bippy-1.2.0"}}}}