CVE-2025-68173
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2025-12-16

Last updated on: 2025-12-18

Assigner: kernel.org

Description
In the Linux kernel, the following vulnerability has been resolved: ftrace: Fix softlockup in ftrace_module_enable A soft lockup was observed when loading amdgpu module. If a module has a lot of tracable functions, multiple calls to kallsyms_lookup can spend too much time in RCU critical section and with disabled preemption, causing kernel panic. This is the same issue that was fixed in commit d0b24b4e91fc ("ftrace: Prevent RCU stall on PREEMPT_VOLUNTARY kernels") and commit 42ea22e754ba ("ftrace: Add cond_resched() to ftrace_graph_set_hash()"). Fix it the same way by adding cond_resched() in ftrace_module_enable.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-12-16
Last Modified
2025-12-18
Generated
2026-06-16
AI Q&A
2025-12-16
EPSS Evaluated
2026-06-15
NVD
CVE-2025-68173
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
linux linux_kernel *
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-UNKNOWN
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability is a soft lockup issue in the Linux kernel's ftrace subsystem when enabling modules with many traceable functions, such as the amdgpu module. Multiple calls to kallsyms_lookup spend excessive time in an RCU critical section with preemption disabled, causing the kernel to hang or panic. The fix involves adding a conditional reschedule (cond_resched()) call to prevent the system from locking up.

Impact Analysis

This vulnerability can cause the Linux kernel to experience a soft lockup or kernel panic when loading certain modules with many traceable functions. This can lead to system instability, crashes, or downtime, potentially disrupting services or applications running on affected systems.

Mitigation Strategies

To mitigate this vulnerability, update the Linux kernel to a version that includes the fix for the ftrace_module_enable soft lockup issue. This fix involves adding cond_resched() in ftrace_module_enable to prevent kernel panic when loading modules with many traceable functions, such as amdgpu. Until the update is applied, avoid loading modules that trigger this issue.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-68173. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart