CVE-2025-39706
BaseFortify
Publication date: 2025-09-05
Last updated on: 2025-11-03
Assigner: kernel.org
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| linux | linux_kernel | 6.1.153-1 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-UNKNOWN |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a kernel NULL pointer dereference issue in the Linux kernel's AMD KFD (Kernel Fusion Driver) debugfs handling. It occurs because the KFD debugfs directory is destroyed before a work queue (kfd_process_destroy_wq) that tries to remove process-specific debugfs entries is executed. When the work queue runs, it attempts to remove entries under a debugfs directory that no longer exists, causing the kernel to hang due to a NULL pointer dereference.
How can this vulnerability impact me? :
This vulnerability can cause the Linux kernel to hang (freeze) due to a NULL pointer dereference when accessing debugfs entries related to AMD KFD. This can lead to system instability or denial of service, affecting the availability of the system.
What immediate steps should I take to mitigate this vulnerability?
To mitigate this vulnerability, update your Linux kernel to a version that includes the fix where kfd_process_destroy_wq is moved prior to kfd_debugfs_fini, preventing the kernel NULL pointer dereference and hang. Avoid manually destroying /sys/kernel/debug/kfd debugfs entries before the kernel properly handles them.