CVE-2025-39882
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2025-39882
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-39882.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2025-39882
- Downstream
- Published
- 2025-09-23T06:15:47Z
- Modified
- 2025-09-24T18:11:24Z
- Summary
- [none]
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
drm/mediatek: fix potential OF node use-after-free
The foreachchildofnode() helper drops the reference it takes to each node as it iterates over children and an explicit ofnodeput() is only needed when exiting the loop early.
Drop the recently introduced bogus additional reference count decrement at each iteration that could potentially lead to a use-after-free.
- References