CVE-2025-68173
BaseFortify
Publication date: 2025-12-16
Last updated on: 2025-12-18
Assigner: kernel.org
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| linux | linux_kernel | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-UNKNOWN |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a soft lockup issue in the Linux kernel's ftrace subsystem when enabling modules with many traceable functions, such as the amdgpu module. Multiple calls to kallsyms_lookup spend excessive time in an RCU critical section with preemption disabled, causing the kernel to hang or panic. The fix involves adding a conditional reschedule (cond_resched()) call to prevent the system from locking up.
How can this vulnerability impact me? :
This vulnerability can cause the Linux kernel to experience a soft lockup or kernel panic when loading certain modules with many traceable functions. This can lead to system instability, crashes, or downtime, potentially disrupting services or applications running on affected systems.
What immediate steps should I take to mitigate this vulnerability?
To mitigate this vulnerability, update the Linux kernel to a version that includes the fix for the ftrace_module_enable soft lockup issue. This fix involves adding cond_resched() in ftrace_module_enable to prevent kernel panic when loading modules with many traceable functions, such as amdgpu. Until the update is applied, avoid loading modules that trigger this issue.