-

CVE-2025-38113

EPSS 0.03%
Veröffentlicht 03.07.2025 08:35:22
Zuletzt bearbeitet 03.07.2025 15:13:53
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
Teams Watchlist Login
Unerledigt Login

In the Linux kernel, the following vulnerability has been resolved:

ACPI: CPPC: Fix NULL pointer dereference when nosmp is used

With nosmp in cmdline, other CPUs are not brought up, leaving
their cpc_desc_ptr NULL. CPU0's iteration via for_each_possible_cpu()
dereferences these NULL pointers, causing panic.

Panic backtrace:

[    0.401123] Unable to handle kernel NULL pointer dereference at virtual address 00000000000000b8
...
[    0.403255] [<ffffffff809a5818>] cppc_allow_fast_switch+0x6a/0xd4
...
Kernel panic - not syncing: Attempted to kill init!

[ rjw: New subject ]

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 8

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version < 356d09c7f5bf525086002a34f8bae40b134d1611

Version 3cc30dd00a580ca0c9c0b01639841cfd72d10129

Status affected

Version < c6dad167aade4bf0bef9130f2f149f4249fc4ad0

Version 3cc30dd00a580ca0c9c0b01639841cfd72d10129

Status affected

Version < 32a48db4cf28ea087214c261da8476db218d08bd

Version 3cc30dd00a580ca0c9c0b01639841cfd72d10129

Status affected

Version < 1a677d0ceb4a5d62117b711a8b2e0aee80d33015

Version 3cc30dd00a580ca0c9c0b01639841cfd72d10129

Status affected

Version < 15eece6c5b05e5f9db0711978c3e3b7f1a2cfe12

Version 3cc30dd00a580ca0c9c0b01639841cfd72d10129

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 5.19

Status affected

Version < 5.19

Version 0

Status unaffected

Version <= 6.1.*

Version 6.1.142

Status unaffected

Version <= 6.6.*

Version 6.6.94

Status unaffected

Version <= 6.12.*

Version 6.12.34

Status unaffected

Version <= 6.15.*

Version 6.15.3

Status unaffected

Version <= *

Version 6.16

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.03%	0.058

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

https://git.kernel.org/stable/c/356d09c7f5bf525086002a34f8bae40b134d1611

https://git.kernel.org/stable/c/c6dad167aade4bf0bef9130f2f149f4249fc4ad0

https://git.kernel.org/stable/c/32a48db4cf28ea087214c261da8476db218d08bd

https://git.kernel.org/stable/c/1a677d0ceb4a5d62117b711a8b2e0aee80d33015

https://git.kernel.org/stable/c/15eece6c5b05e5f9db0711978c3e3b7f1a2cfe12

https://nvd.nist.gov/vuln/detail/CVE-2025-38113

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-38113

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-38113

EUVD