CVE-2025-39882

In the Linux kernel, the following vulnerability has been resolved:

drm/mediatek: fix potential OF node use-after-free

The for_each_child_of_node() helper drops the reference it takes to each
node as it iterates over children and an explicit of_node_put() is only
needed when exiting the loop early.

Drop the recently introduced bogus additional reference count decrement
at each iteration that could potentially lead to a use-after-free.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
UNKNOWN
---
LinuxCNA
---
---
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
Debian logo
Debian Releases
Debian Product
Codename
linux
bullseye
5.10.223-1
not-affected
bookworm
6.1.148-1
not-affected
bullseye (security)
5.10.237-1
fixed
bookworm (security)
6.1.153-1
fixed
trixie
vulnerable
trixie (security)
6.12.48-1
fixed
forky
vulnerable
sid
6.16.8-1
fixed
Vulnerability Media Exposure
References
https://git.kernel.org/stable/c/4de37a48b6b58faaded9eb765047cf0d8785ea18
https://git.kernel.org/stable/c/b2fbe0f9f80b9cfa1e06ddcf8b863d918394ef1d
https://git.kernel.org/stable/c/b58a26cdd4795c1ce6a80e38e9348885555dacd6
https://git.kernel.org/stable/c/c4901802ed1ce859242e10af06e6a7752cba0497