CVE-2025-39681
BaseFortify
Publication date: 2025-09-05
Last updated on: 2025-11-03
Assigner: kernel.org
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| hygon | linux_kernel | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-UNKNOWN |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability occurs in the Linux kernel on Hygon CPUs where a function called resctrl_cpu_detect() was not called during the CPU initialization process. This missing call causes a division by zero fault during the early boot stage on machines that support certain CPU monitoring features (X86_FEATURE_CQM*). The fault happens because the system tries to calculate a monitoring configuration using uninitialized data, leading to a crash or failure during boot.
How can this vulnerability impact me? :
The vulnerability can cause a division by zero fault during the early boot process on affected machines, which may prevent the system from booting properly or cause instability during startup. This can lead to system downtime or inability to use the affected hardware until the issue is resolved.