Impact
The flaw occurs while allocating and attaching buffer objects in the Linux kernel DRM Xe DMA subsystem. An empty or prematurely freed buffer can be exposed to the invalidate_mappings callback, which may then dereference a NULL or dangling pointer, causing a crash. The kernel panic resulting from this crash manifests as a denial‑of‑service for the affected system.
Affected Systems
Any Linux distribution running a kernel that contains the buggy drm/xe/dma-buf code before the commit that reorders the allocation and attachment steps. Systems) or other drivers interacting with the DRM Xe module are potentially affected.
Risk and Exploitability
1% indicates an extremely low probability of exploitation, and no publicly available exploitation data is listed; the vulnerability is not in CISA’s KEV catalog. Exploitation would require influence over the GPU driver or triggering a race condition in the kernel. Based on the description, it is inferred that a local attacker could potentially trigger this bug, but no remote exploitation path is documented. The primary impact is a kernel crash resulting in denial‑of‑service; no additional privilege escalation is specified in the official description.
OpenCVE Enrichment