CVE-2025-38095

Q: What is the severity of CVE-2025-38095?

CVE-2025-38095 has a CVSS score of 5.5 (MEDIUM). A memory barrier ordering issue in the Linux kernel's dma-buf subsystem can lead to a NULL pointer dereference when memory updates are reordered. This vulnerability affects systems running vulnerable Linux kernel versions with dma-buf functionality enabled. The issue could cause kernel crashes or system instability.

5.5 MEDIUM

Denial of Service

📋 TL;DR

A memory barrier ordering issue in the Linux kernel's dma-buf subsystem can lead to a NULL pointer dereference when memory updates are reordered. This vulnerability affects systems running vulnerable Linux kernel versions with dma-buf functionality enabled. The issue could cause kernel crashes or system instability.

💻 Affected Systems

Products:

Linux kernel

Versions: Specific vulnerable versions not explicitly stated in CVE, but patches exist in stable kernel trees. Likely affects multiple recent kernel versions before fixes were backported.

Operating Systems: Linux distributions using affected kernel versions

Default Config Vulnerable: ⚠️ Yes

Notes: Requires dma-buf subsystem to be enabled/used. Most modern Linux systems use dma-buf for graphics and DMA operations.

📦 What is this software?

Debian Linux by Debian

View all CVEs affecting Debian Linux →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Kernel panic leading to system crash and denial of service, potentially allowing privilege escalation in combination with other vulnerabilities.

🟠

Likely Case

System instability or kernel crashes when dma-buf operations are performed, resulting in denial of service.

🟢

If Mitigated

Minor performance impact from proper memory barrier implementation with no security consequences.

🌐 Internet-Facing: LOW - This is a local kernel vulnerability requiring local access or ability to trigger dma-buf operations.

🏢 Internal Only: MEDIUM - Local users or processes could trigger the vulnerability, potentially causing system instability affecting multiple users.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: MEDIUM

Exploitation requires triggering specific dma-buf operations. No public exploits known at this time.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Patches available in stable kernel trees via provided git commits. Specific kernel version numbers depend on distribution backports.

Vendor Advisory: https://git.kernel.org/stable/c/08680c4dadc6e736c75bc2409d833f03f9003c51

Restart Required: Yes

Instructions:

1. Check your Linux kernel version. 2. Update to a patched kernel version from your distribution's repositories. 3. Reboot the system to load the new kernel.

🔧 Temporary Workarounds

Disable dma-buf functionality

linux

Disable dma-buf subsystem if not required (not recommended for most systems as it breaks graphics and DMA functionality)

Not recommended - would require kernel recompilation with CONFIG_DMA_SHARED_BUFFER=n

🧯 If You Can't Patch

Restrict local user access to systems where possible
Monitor system logs for kernel panic or NULL pointer dereference messages

🔍 How to Verify

Check if Vulnerable:

Check kernel version and compare with distribution security advisories. Vulnerable if running unpatched kernel with dma-buf enabled.

Check Version:

uname -r

Verify Fix Applied:

Verify kernel version after update matches patched version from distribution security advisory.

📡 Detection & Monitoring

Log Indicators:

Kernel panic messages
NULL pointer dereference in kernel logs
Oops messages related to dma-buf

Network Indicators:

None - this is a local vulnerability

SIEM Query:

source="kernel" AND ("NULL pointer dereference" OR "kernel panic" OR "Oops") AND "dma-buf"

📊 Metadata

CVE ID: CVE-2025-38095

CVSS v3 Score: 5.5 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE: CWE-476

EPSS Score: 0.03% exploit probability (8.7th percentile)

Published: July 3, 2025

Last Updated: December 16, 2025

🔗 References

https://git.kernel.org/stable/c/08680c4dadc6e736c75bc2409d833f03f9003c51 Patch
https://git.kernel.org/stable/c/3becc659f9cb76b481ad1fb71f54d5c8d6332d3f Patch
https://git.kernel.org/stable/c/72c7d62583ebce7baeb61acce6057c361f73be4a Patch
https://git.kernel.org/stable/c/90eb79c4ed98a4e24a62ccf61c199ab0f680fa8f Patch
https://git.kernel.org/stable/c/c9d2b9a80d06a58f37e0dc8c827075639b443927 Patch
https://git.kernel.org/stable/c/d0b7f11dd68b593bd970e5735be00e8d89bace30 Patch
https://git.kernel.org/stable/c/fe1bebd0edb22e3536cbc920ec713331d1367ad4 Patch
https://lists.debian.org/debian-lts-announce/2025/08/msg00010.html Third Party Advisory,Mailing List
https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html Third Party Advisory,Mailing List

📋 TL;DR

💻 Affected Systems

📦 What is this software?

Debian Linux by Debian

Linux Kernel by Linux

Linux Kernel by Linux

Linux Kernel by Linux

Linux Kernel by Linux

Linux Kernel by Linux

Linux Kernel by Linux

Linux Kernel by Linux

Linux Kernel by Linux

Linux Kernel by Linux

Linux Kernel by Linux

Linux Kernel by Linux

Linux Kernel by Linux

⚠️ Risk & Real-World Impact

Worst Case

Likely Case

If Mitigated

🎯 Exploit Status

🛠️ Fix & Mitigation

✅ Official Fix

Instructions:

🔧 Temporary Workarounds

Disable dma-buf functionality

🧯 If You Can't Patch

🔍 How to Verify

Check if Vulnerable:

Check Version:

Verify Fix Applied:

📡 Detection & Monitoring

Log Indicators:

Network Indicators:

SIEM Query:

📊 Metadata

🔗 References

📤 Share & Export

🔗 Related Vulnerabilities