{
  "threat_severity" : "Moderate",
  "public_date" : "2025-12-09T00:00:00Z",
  "bugzilla" : {
    "description" : "kernel: drm/amdgpu: fix nullptr err of vm_handle_moved",
    "id" : "2420421",
    "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=2420421"
  },
  "cvss3" : {
    "cvss3_base_score" : "5.5",
    "cvss3_scoring_vector" : "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
    "status" : "draft"
  },
  "details" : [ "In the Linux kernel, the following vulnerability has been resolved:\ndrm/amdgpu: fix nullptr err of vm_handle_moved\nIf a amdgpu_bo_va is fpriv->prt_va, the bo of this one is always NULL.\nSo, such kind of amdgpu_bo_va should be updated separately before\namdgpu_vm_handle_moved.", "A NULL pointer dereference flaw was found in the Linux kernel's AMD GPU (amdgpu) driver. In the amdgpu_vm_handle_moved() function, when processing amdgpu_bo_va entries that are part of fpriv->prt_va (partially resident texture virtual address), the associated buffer object (bo) is always NULL. Dereferencing this NULL pointer causes a kernel crash. A local user with access to AMD GPU resources could trigger this condition, resulting in a denial of service." ],
  "statement" : "This vulnerability affects systems with AMD GPUs using the amdgpu driver. Exploitation requires local access and the ability to interact with AMD GPU virtual memory management. The impact is limited to denial of service through a kernel crash.",
  "package_state" : [ {
    "product_name" : "Red Hat Enterprise Linux 10",
    "fix_state" : "Not affected",
    "package_name" : "kernel",
    "cpe" : "cpe:/o:redhat:enterprise_linux:10"
  }, {
    "product_name" : "Red Hat Enterprise Linux 6",
    "fix_state" : "Not affected",
    "package_name" : "kernel",
    "cpe" : "cpe:/o:redhat:enterprise_linux:6"
  }, {
    "product_name" : "Red Hat Enterprise Linux 7",
    "fix_state" : "Not affected",
    "package_name" : "kernel",
    "cpe" : "cpe:/o:redhat:enterprise_linux:7"
  }, {
    "product_name" : "Red Hat Enterprise Linux 7",
    "fix_state" : "Not affected",
    "package_name" : "kernel-rt",
    "cpe" : "cpe:/o:redhat:enterprise_linux:7"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8",
    "fix_state" : "Not affected",
    "package_name" : "kernel",
    "cpe" : "cpe:/o:redhat:enterprise_linux:8"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8",
    "fix_state" : "Not affected",
    "package_name" : "kernel-rt",
    "cpe" : "cpe:/o:redhat:enterprise_linux:8"
  }, {
    "product_name" : "Red Hat Enterprise Linux 9",
    "fix_state" : "Not affected",
    "package_name" : "kernel",
    "cpe" : "cpe:/o:redhat:enterprise_linux:9"
  }, {
    "product_name" : "Red Hat Enterprise Linux 9",
    "fix_state" : "Not affected",
    "package_name" : "kernel-rt",
    "cpe" : "cpe:/o:redhat:enterprise_linux:9"
  } ],
  "references" : [ "https://www.cve.org/CVERecord?id=CVE-2025-40339\nhttps://nvd.nist.gov/vuln/detail/CVE-2025-40339\nhttps://lore.kernel.org/linux-cve-announce/2025120911-CVE-2025-40339-82ee@gregkh/T" ],
  "name" : "CVE-2025-40339",
  "mitigation" : {
    "value" : "To mitigate this issue, prevent the amdgpu module from being loaded if AMD GPU functionality is not required. See https://access.redhat.com/solutions/41278 for instructions on how to blacklist a kernel module.",
    "lang" : "en:us"
  },
  "csaw" : false
}