CVE-2025-39921
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2025-10-01

Last updated on: 2025-12-11

Assigner: kernel.org

Description
In the Linux kernel, the following vulnerability has been resolved: spi: microchip-core-qspi: stop checking viability of op->max_freq in supports_op callback In commit 13529647743d9 ("spi: microchip-core-qspi: Support per spi-mem operation frequency switches") the logic for checking the viability of op->max_freq in mchp_coreqspi_setup_clock() was copied into mchp_coreqspi_supports_op(). Unfortunately, op->max_freq is not valid when this function is called during probe but is instead zero. Accordingly, baud_rate_val is calculated to be INT_MAX due to division by zero, causing probe of the attached memory device to fail. Seemingly spi-microchip-core-qspi was the only driver that had such a modification made to its supports_op callback when the per_op_freq capability was added, so just remove it to restore prior functionality.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-10-01
Last Modified
2025-12-11
Generated
2026-06-16
AI Q&A
2025-10-01
EPSS Evaluated
2026-06-15
NVD
CVE-2025-39921
Affected Vendors & Products
Showing 5 associated CPEs
Vendor Product Version / Range
linux linux_kernel From 6.14 (inc) to 6.16.6 (exc)
linux linux_kernel 6.17
linux linux_kernel 6.17
linux linux_kernel 6.17
linux linux_kernel 6.17
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-NVD-CWE-noinfo
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability is in the Linux kernel's spi-microchip-core-qspi driver. The issue arises because the function mchp_coreqspi_supports_op() incorrectly checks the viability of the op->max_freq parameter during the probe phase, when op->max_freq is actually zero and invalid. This leads to a division by zero, causing baud_rate_val to be calculated as INT_MAX, which in turn causes the probe of the attached memory device to fail. The fix involved removing this invalid check to restore the previous correct behavior.

Impact Analysis

This vulnerability can cause the probe of the attached memory device to fail in systems using the spi-microchip-core-qspi driver. This means that the memory device may not be properly initialized or accessible, potentially leading to device malfunction or system instability where this driver and hardware are used.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-39921. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart