CVE-2025-71130NULL Pointer Dereference in Linux

CWE-476NULL Pointer Dereference14 documents7 sources
Severity
5.5MEDIUMNVD
EPSS
0.0%
top 95.59%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
14
LinuxLinux KernelDebian Linux+11 more
Timeline
PublishedJan 14
Latest updateApr 17

Description

In the Linux kernel, the following vulnerability has been resolved: drm/i915/gem: Zero-initialize the eb.vma array in i915_gem_do_execbuffer Initialize the eb.vma array with values of 0 when the eb structure is first set up. In particular, this sets the eb->vma[i].vma pointers to NULL, simplifying cleanup and getting rid of the bug described below. During the execution of eb_lookup_vmas(), the eb->vma array is successively filled up with struct eb_vma objects. This process includes calling eb

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages16 packages

Linuxlinux/linux_kernel5.16.06.1.160+3
NVDlinux/linux_kernel5.16.16.1.160+5
Debianlinux/linux_kernel< 6.1.162-1+2
CVEListV5linux/linux544460c33821b44c2f0c643121303c3dc3f66ef125d69e07770745992387c016613fd7ac8eaf9893+5
debiandebian/linux< linux 6.1.162-1 (bookworm)

Patches

Patch: git.kernel.orgPatch: git.kernel.orgPatch: git.kernel.org

🔴Vulnerability Details

3
GHSA
GHSA-fcj7-h6w4-whvj: In the Linux kernel, the following vulnerability has been resolved: drm/i915/gem: Zero-initialize the eb2026-01-14
OSV
CVE-2025-71130: In the Linux kernel, the following vulnerability has been resolved: drm/i915/gem: Zero-initialize the eb2026-01-14
OSV
drm/i915/gem: Zero-initialize the eb.vma array in i915_gem_do_execbuffer2026-01-14

📋Vendor Advisories

9
Ubuntu
Linux kernel (GCP) vulnerabilities2026-04-17
Ubuntu
Linux kernel (FIPS) vulnerabilities2026-04-17
Ubuntu
Linux kernel (Real-time) vulnerabilities2026-04-17
Ubuntu
Linux kernel (Real-time) vulnerabilities2026-04-17
Ubuntu
Linux kernel (NVIDIA) vulnerabilities2026-04-17

🕵️Threat Intelligence

1
Wiz
CVE-2025-71130 Impact, Exploitability, and Mitigation Steps | Wiz