Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: drm/hyperv: Fix address space leak when Hyper-V DRM device is removed When a Hyper-V DRM device is probed, the driver allocates MMIO space for the vram, and maps it cacheable. If the device removed, or in the error path for device probing, the MMIO space is released but no unmap is done. Consequently the kernel address space for the mapping is leaked. Fix this by adding iounmap() calls in the device removal path, and in the error path during device probing.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | >= 6.0, < 6.1.132 |
Related Weaknesses (CWE)
References
- https://git.kernel.org/stable/c/158242b56bf465a73e1edeac0fe828a8acad4499Patch
- https://git.kernel.org/stable/c/24f1bbfb2be77dad82489c1468bbb14312aab129Patch
- https://git.kernel.org/stable/c/ad27b4a51495490b815580d9b935e8eee14d1a9cPatch
- https://git.kernel.org/stable/c/aed709355fd05ef747e1af24a1d5d78cd7feb81ePatch
- https://git.kernel.org/stable/c/c40cd24bfb9bfbb315c118ca14ebe6cf52e2dd1ePatch
- https://lists.debian.org/debian-lts-announce/2025/05/msg00045.html
FAQ
What is CVE-2025-21978?
CVE-2025-21978 is a vulnerability with a CVSS score of 5.5 (MEDIUM). In the Linux kernel, the following vulnerability has been resolved: drm/hyperv: Fix address space leak when Hyper-V DRM device is removed When a Hyper-V DRM device is probed, the driver allocates MM...
How severe is CVE-2025-21978?
CVE-2025-21978 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2025-21978?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel.