CVE-2025-38188

Published: July 7, 2025Last modified: July 7, 2025

Description

In the Linux kernel, the following vulnerability has been resolved: drm/msm/a7xx: Call CP_RESET_CONTEXT_STATE Calling this packet is necessary when we switch contexts because there are various pieces of state used by userspace to synchronize between BR and BV that are persistent across submits and we need to make sure that they are in a "safe" state when switching contexts. Otherwise a userspace submission in one context could cause another context to function incorrectly and hang, effectively a denial of service (although without leaking data). This was missed during initial a7xx bringup. Patchwork: https://patchwork.freedesktop.org/patch/654924/

Status

References

• https://git.kernel.org/stable/c/2b520c6104f34e3a548525173c38ebca4402cac3
• https://git.kernel.org/stable/c/35fe72f3c425bbf1d580bd9066e2456b1dbae4a8
• https://git.kernel.org/stable/c/8a1f52651dd8203695d293c6824d8f6c067877d1