CVE-2025-39882 | THREATINT

Description

In the Linux kernel, the following vulnerability has been resolved: drm/mediatek: fix potential OF node use-after-free The for_each_child_of_node() helper drops the reference it takes to each node as it iterates over children and an explicit of_node_put() is only needed when exiting the loop early. Drop the recently introduced bogus additional reference count decrement at each iteration that could potentially lead to a use-after-free.

PUBLISHED Reserved 2025-04-16 | Published 2025-09-23 | Updated 2025-09-29 | Assigner Linux

Product status

Default status

unaffected

7d98166183d627c0b9daca7672b2191fae0f8a03 (git) before b2fbe0f9f80b9cfa1e06ddcf8b863d918394ef1d

affected

31ce7c089b50c3d3056c37e0e25e7535e4428ae1 (git) before b58a26cdd4795c1ce6a80e38e9348885555dacd6

affected

fae58d0155a979a8c414bbc12db09dd4b2f910d0 (git) before c4901802ed1ce859242e10af06e6a7752cba0497

affected

1f403699c40f0806a707a9a6eed3b8904224021a (git) before 4de37a48b6b58faaded9eb765047cf0d8785ea18

affected

Default status

unaffected

6.6.105 (semver) before 6.6.107

affected

6.12.45 (semver) before 6.12.48

affected

6.16.5 (semver) before 6.16.8

affected

References

git.kernel.org/...c/b2fbe0f9f80b9cfa1e06ddcf8b863d918394ef1d

git.kernel.org/...c/b58a26cdd4795c1ce6a80e38e9348885555dacd6

git.kernel.org/...c/c4901802ed1ce859242e10af06e6a7752cba0497

git.kernel.org/...c/4de37a48b6b58faaded9eb765047cf0d8785ea18

cve.org (CVE-2025-39882)

nvd.nist.gov (CVE-2025-39882)

Download JSON