VYPR
Unrated severityNVD Advisory· Published Aug 21, 2024· Updated May 4, 2025

drm/virtio: Fix GEM handle creation UAF

CVE-2022-48899

Description

In the Linux kernel, the following vulnerability has been resolved:

drm/virtio: Fix GEM handle creation UAF

Userspace can guess the handle value and try to race GEM object creation with handle close, resulting in a use-after-free if we dereference the object after dropping the handle's reference. For that reason, dropping the handle's reference must be done *after* we are done dereferencing the object.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

120

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.