CVE-2025-68370
Unknown Unknown - Not Provided
Kernel Paging Fault in Linux coresight_tmc Causes System Crash

Publication date: 2025-12-24

Last updated on: 2025-12-24

Assigner: kernel.org

Description
In the Linux kernel, the following vulnerability has been resolved: coresight: tmc: add the handle of the event to the path The handle is essential for retrieving the AUX_EVENT of each CPU and is required in perf mode. It has been added to the coresight_path so that dependent devices can access it from the path when needed. The existing bug can be reproduced with: perf record -e cs_etm//k -C 0-9 dd if=/dev/zero of=/dev/null Showing an oops as follows: Unable to handle kernel paging request at virtual address 000f6e84934ed19e Call trace: tmc_etr_get_buffer+0x30/0x80 [coresight_tmc] (P) catu_enable_hw+0xbc/0x3d0 [coresight_catu] catu_enable+0x70/0xe0 [coresight_catu] coresight_enable_path+0xb0/0x258 [coresight]
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-12-24
Last Modified
2025-12-24
Generated
2026-06-16
AI Q&A
2025-12-24
EPSS Evaluated
2026-06-15
NVD
CVE-2025-68370
EUVD
EUVD-2025-205084
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
linux linux_kernel *
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-UNKNOWN
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability in the Linux kernel's coresight subsystem involves the tmc component not handling the event properly in the path. Specifically, the handle required to retrieve the AUX_EVENT of each CPU in perf mode was missing from the coresight_path, causing a kernel oops (crash) when running certain perf record commands. The issue has been fixed by adding the event handle to the path so dependent devices can access it correctly.

Impact Analysis

This vulnerability can cause the Linux kernel to crash (kernel oops) when using perf record with certain events, potentially leading to system instability or denial of service during performance monitoring activities.

Detection Guidance

This vulnerability can be detected by reproducing the bug using the command: perf record -e cs_etm//k -C 0-9 dd if=/dev/zero of=/dev/null. If the system shows a kernel oops with a message similar to 'Unable to handle kernel paging request at virtual address ...' and a call trace involving coresight_tmc and coresight_catu modules, it indicates the presence of the vulnerability.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-68370. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart