Home

Description

In the Linux kernel, the following vulnerability has been resolved: drm/xe/vf: Don't expose sysfs attributes not applicable for VFs VFs can't read BMG_PCIE_CAP(0x138340) register nor access PCODE (already guarded by the info.skip_pcode flag) so we shouldn't expose attributes that require any of them to avoid errors like: [] xe 0000:03:00.1: [drm] Tile0: GT0: VF is trying to read an \ inaccessible register 0x138340+0x0 [] RIP: 0010:xe_gt_sriov_vf_read32+0x6c2/0x9a0 [xe] [] Call Trace: [] xe_mmio_read32+0x110/0x280 [xe] [] auto_link_downgrade_capable_show+0x2e/0x70 [xe] [] dev_attr_show+0x1a/0x70 [] sysfs_kf_seq_show+0xaa/0x120 [] kernfs_seq_show+0x41/0x60 (cherry picked from commit a2d6223d224f333f705ed8495bf8bebfbc585c35)

PUBLISHED Reserved 2025-04-16 | Published 2025-10-24 | Updated 2025-10-24 | Assigner Linux

Product status

Default status
unaffected

0e414bf7ad012e55c8a0aa4e91f68cb1cf5801ff (git) before bacbadedbba737da8ae6e0464bc0971c30cda4cb
affected

0e414bf7ad012e55c8a0aa4e91f68cb1cf5801ff (git) before 500dad428e5b0de4c1bdfa893822a6e06ddad0b5
affected

Default status
affected

6.16
affected

Any version before 6.16
unaffected

6.16.10 (semver)
unaffected

6.17 (original_commit_for_fix)
unaffected

References

git.kernel.org/...c/bacbadedbba737da8ae6e0464bc0971c30cda4cb

git.kernel.org/...c/500dad428e5b0de4c1bdfa893822a6e06ddad0b5

cve.org (CVE-2025-40023)

nvd.nist.gov (CVE-2025-40023)

Download JSON