NVD

CVE-2025-39923 Detail

Description

In the Linux kernel, the following vulnerability has been resolved: dmaengine: qcom: bam_dma: Fix DT error handling for num-channels/ees When we don't have a clock specified in the device tree, we have no way to ensure the BAM is on. This is often the case for remotely-controlled or remotely-powered BAM instances. In this case, we need to read num-channels from the DT to have all the necessary information to complete probing. However, at the moment invalid device trees without clock and without num-channels still continue probing, because the error handling is missing return statements. The driver will then later try to read the number of channels from the registers. This is unsafe, because it relies on boot firmware and lucky timing to succeed. Unfortunately, the lack of proper error handling here has been abused for several Qualcomm SoCs upstream, causing early boot crashes in several situations [1, 2]. Avoid these early crashes by erroring out when any of the required DT properties are missing. Note that this will break some of the existing DTs upstream (mainly BAM instances related to the crypto engine). However, clearly these DTs have never been tested properly, since the error in the kernel log was just ignored. It's safer to disable the crypto engine for these broken DTBs. [1]: https://lore.kernel.org/r/[email protected]/ [2]: https://lore.kernel.org/r/[email protected]/

Metrics

NVD enrichment efforts reference publicly available information to associate vector strings. CVSS information contributed by other sources is also displayed.

CVSS 4.0 Severity and Vector Strings:

NIST: NVD

N/A

NVD assessment not yet provided.

CVSS 3.x Severity and Vector Strings:

NIST: NVD

Base Score: 5.5 MEDIUM

Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CVSS 2.0 Severity and Vector Strings:

National Institute of Standards and Technology

NIST: NVD

Base Score: N/A

NVD assessment not yet provided.

References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to [email protected].

URL	Source(s)	Tag(s)
https://git.kernel.org/stable/c/0ff9df758af7022d749718fb6b8385cc5693acf3	kernel.org	Patch
https://git.kernel.org/stable/c/1d98ba204d8a6db0d986c7f1aefaa0dcd1c007a2	kernel.org	Patch
https://git.kernel.org/stable/c/1fc14731f0be4885e60702b9596d14d9a79cf053	kernel.org	Patch
https://git.kernel.org/stable/c/2e257a6125c63350f00dc42b9674f20fd3cf4a9f	kernel.org	Patch
https://git.kernel.org/stable/c/5068b5254812433e841a40886e695633148d362d	kernel.org	Patch
https://git.kernel.org/stable/c/555bd16351a35c79efb029a196975a5a27f7fbc4	kernel.org	Patch
https://git.kernel.org/stable/c/6ac1599d0e78036d9d08efc2f58c2d91f0a3ee4c	kernel.org	Patch
https://git.kernel.org/stable/c/ebf6c7c908e5999531c3517289598f187776124f	kernel.org	Patch
https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html	CVE	Third Party Advisory

Weakness Enumeration

CWE-ID	CWE Name	Source
NVD-CWE-noinfo	Insufficient Information	NIST

Known Affected Software Configurations Switch to CPE 2.2

CPEs loading, please wait.

Denotes Vulnerable Software
Are we missing a CPE here? Please let us know.

Change History

4 change records found show changes

Initial Analysis by NIST 1/20/2026 10:45:52 AM

Action	Type	New Value
Added	CVSS V3.1	AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Added	CWE	NVD-CWE-noinfo
Added	CPE Configuration	OR cpe:2.3:o:debian:debian_linux:11.0:::::::
Added	CPE Configuration	OR cpe:2.3:o:linux:linux_kernel::::::::* versions from (including) 5.11 up to (excluding) 5.15.194 cpe:2.3:o:linux:linux_kernel::::::::* versions from (including) 5.16 up to (excluding) 6.1.153 cpe:2.3:o:linux:linux_kernel::::::::* versions from (including) 5.5 up to (excluding) 5.10.245 cpe:2.3:o:linux:linux_kernel::::::::* versions from (including) 6.2 up to (excluding) 6.6.107 cpe:2.3:o:linux:linux_kernel:6.17:rc1::::::* cpe:2.3:o:linux:linux_kernel:6.17:rc2::::::* cpe:2.3:o:linux:linux_kernel:6.17:rc3::::::* cpe:2.3:o:linux:linux_kernel:6.17:rc4::::::* cpe:2.3:o:linux:linux_kernel:6.17:rc5::::::* cpe:2.3:o:linux:linux_kernel::::::::* versions from (including) 6.13 up to (excluding) 6.16.8 cpe:2.3:o:linux:linux_kernel::::::::* versions from (including) 6.7 up to (excluding) 6.12.48 cpe:2.3:o:linux:linux_kernel::::::::* versions from (including) 4.14.45 up to (excluding) 4.15 cpe:2.3:o:linux:linux_kernel::::::::* versions from (including) 4.16.13 up to (excluding) 5.4.300 cpe:2.3:o:linux:linux_kernel::::::::* versions from (including) 4.9.104 up to (excluding) 4.10
Added	Reference Type	CVE: https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html Types: Third Party Advisory
Added	Reference Type	kernel.org: https://git.kernel.org/stable/c/0ff9df758af7022d749718fb6b8385cc5693acf3 Types: Patch
Added	Reference Type	kernel.org: https://git.kernel.org/stable/c/1d98ba204d8a6db0d986c7f1aefaa0dcd1c007a2 Types: Patch
Added	Reference Type	kernel.org: https://git.kernel.org/stable/c/1fc14731f0be4885e60702b9596d14d9a79cf053 Types: Patch
Added	Reference Type	kernel.org: https://git.kernel.org/stable/c/2e257a6125c63350f00dc42b9674f20fd3cf4a9f Types: Patch
Added	Reference Type	kernel.org: https://git.kernel.org/stable/c/5068b5254812433e841a40886e695633148d362d Types: Patch
Added	Reference Type	kernel.org: https://git.kernel.org/stable/c/555bd16351a35c79efb029a196975a5a27f7fbc4 Types: Patch
Added	Reference Type	kernel.org: https://git.kernel.org/stable/c/6ac1599d0e78036d9d08efc2f58c2d91f0a3ee4c Types: Patch
Added	Reference Type	kernel.org: https://git.kernel.org/stable/c/ebf6c7c908e5999531c3517289598f187776124f Types: Patch

New CVE Received from kernel.org 10/01/2025 4:15:35 AM

Action	Type	New Value
Added	Description	In the Linux kernel, the following vulnerability has been resolved: dmaengine: qcom: bam_dma: Fix DT error handling for num-channels/ees When we don't have a clock specified in the device tree, we have no way to ensure the BAM is on. This is often the case for remotely-controlled or remotely-powered BAM instances. In this case, we need to read num-channels from the DT to have all the necessary information to complete probing. However, at the moment invalid device trees without clock and without num-channels still continue probing, because the error handling is missing return statements. The driver will then later try to read the number of channels from the registers. This is unsafe, because it relies on boot firmware and lucky timing to succeed. Unfortunately, the lack of proper error handling here has been abused for several Qualcomm SoCs upstream, causing early boot crashes in several situations [1, 2]. Avoid these early crashes by erroring out when any of the required DT properties are missing. Note that this will break some of the existing DTs upstream (mainly BAM instances related to the crypto engine). However, clearly these DTs have never been tested properly, since the error in the kernel log was just ignored. It's safer to disable the crypto engine for these broken DTBs. [1]: https://lore.kernel.org/r/[email protected]/ [2]: https://lore.kernel.org/r/[email protected]/
Added	Reference	https://git.kernel.org/stable/c/0ff9df758af7022d749718fb6b8385cc5693acf3
Added	Reference	https://git.kernel.org/stable/c/1fc14731f0be4885e60702b9596d14d9a79cf053
Added	Reference	https://git.kernel.org/stable/c/5068b5254812433e841a40886e695633148d362d
Added	Reference	https://git.kernel.org/stable/c/555bd16351a35c79efb029a196975a5a27f7fbc4
Added	Reference	https://git.kernel.org/stable/c/ebf6c7c908e5999531c3517289598f187776124f

Quick Info

CVE Dictionary Entry:
CVE-2025-39923
NVD Published Date:
10/01/2025
NVD Last Modified:
01/20/2026
Source:
kernel.org

You are viewing this page in an unauthorized frame window.

Information Technology Laboratory

National Vulnerability Database

National Vulnerability Database

CVE-2025-39923 Detail

Description

Metrics

References to Advisories, Solutions, and Tools

Weakness Enumeration

Known Affected Software Configurations Switch to CPE 2.2

CPEs loading, please wait.

Change History

Initial Analysis by NIST 1/20/2026 10:45:52 AM

CVE Modified by CVE 11/03/2025 1:16:53 PM

CVE Modified by kernel.org 10/02/2025 10:15:44 AM

New CVE Received from kernel.org 10/01/2025 4:15:35 AM

Quick Info