CVE-2025-21688: 
Linux Kernel vulnerability analysis and mitigation

CVE-2025-21688 is a race condition vulnerability discovered in the Linux kernel's DRM/V3D driver, specifically affecting the job pointer handling in interrupt handling. The vulnerability was discovered in January 2025 and publicly disclosed on February 10, 2025. The issue affects Linux kernel systems using the V3D graphics driver (Red Hat CVE).

The vulnerability stems from a race condition between the DRM scheduler workqueue and the IRQ execution thread. The issue was introduced in commit e4b5ccd392b9, where the job pointer is set to NULL after job completion. When the fence is signaled in the IRQ execution thread, a new job starts execution, creating a race condition where the IRQ thread sets the job pointer to NULL simultaneously as the run_job() function assigns a new job to the pointer. This can lead to a NULL pointer dereference if the IRQ execution thread sets the job pointer to NULL after run_job() assigns it to the new job. The vulnerability has a CVSS v3.1 Base Score of 4.7 (Red Hat CVE).

When exploited, this vulnerability can cause a NULL pointer dereference when the GPU emits an interrupt and v3d_irq() is triggered, resulting in a kernel panic and system crash. This can lead to a denial of service condition on affected systems (Kernel Git).

The vulnerability has been fixed by modifying the code to assign the job pointer to NULL before signaling the fence, ensuring that the job pointer is cleared before any new job starts execution. This prevents the race condition and the subsequent NULL pointer dereference. The fix has been implemented in various kernel versions, with Debian's bookworm release version 6.1.128-1 and later containing the fix (Debian Tracker).