CVE-2025-21697

drm/v3d: Ensure job pointer is set to NULL after job completion

Description

In the Linux kernel, the following vulnerability has been resolved: drm/v3d: Ensure job pointer is set to NULL after job completion After a job completes, the corresponding pointer in the device must be set to NULL. Failing to do so triggers a warning when unloading the driver, as it appears the job is still active. To prevent this, assign the job pointer to NULL after completing the job, indicating the job has finished.

5.5
CVSS
Severity: Medium
CVSS 3.1 •
EPSS 0.02%
Affected: Linux Linux
Affected: Linux Linux
Published at:
Updated at:

References

Link Tags
https://git.kernel.org/stable/c/1bd6303d08c85072ce40ac01a767ab67195105bd patch
https://git.kernel.org/stable/c/a34050f70e7955a359874dff1a912a748724a140 patch
https://git.kernel.org/stable/c/14e0a874488e79086340ba8e2d238cb9596b68a8 patch
https://git.kernel.org/stable/c/2a1c88f7ca5c12dff6fa6787492ac910bb9e4407 patch
https://git.kernel.org/stable/c/63195bae1cbf78f1d392b1bc9ae4b03c82d0ebf3 patch
https://git.kernel.org/stable/c/b22467b1ae104073dcb11aa78562a331cd7fb0e0 patch
https://git.kernel.org/stable/c/e4b5ccd392b92300a2b341705cc4805681094e49 patch

Frequently Asked Questions

What is the severity of CVE-2025-21697?
CVE-2025-21697 has been scored as a medium severity vulnerability.
How to fix CVE-2025-21697?
To fix CVE-2025-21697, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2025-21697 being actively exploited in the wild?
As for now, there are no information to confirm that CVE-2025-21697 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2025-21697?
CVE-2025-21697 affects Linux Linux, Linux Linux.
This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.
© 2025 Under My Watch. All Rights Reserved.