CVE-2025-68370
Unknown Unknown - Not Provided

Kernel Paging Fault in Linux coresight_tmc Causes System Crash

Vulnerability report for CVE-2025-68370, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2025-12-24

Last updated on: 2025-12-24

Assigner: kernel.org

Description

In the Linux kernel, the following vulnerability has been resolved: coresight: tmc: add the handle of the event to the path The handle is essential for retrieving the AUX_EVENT of each CPU and is required in perf mode. It has been added to the coresight_path so that dependent devices can access it from the path when needed. The existing bug can be reproduced with: perf record -e cs_etm//k -C 0-9 dd if=/dev/zero of=/dev/null Showing an oops as follows: Unable to handle kernel paging request at virtual address 000f6e84934ed19e Call trace: tmc_etr_get_buffer+0x30/0x80 [coresight_tmc] (P) catu_enable_hw+0xbc/0x3d0 [coresight_catu] catu_enable+0x70/0xe0 [coresight_catu] coresight_enable_path+0xb0/0x258 [coresight]

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2025-12-24
Last Modified
2025-12-24
Generated
2026-07-06
AI Q&A
2025-12-24
EPSS Evaluated
2026-07-05
NVD
EUVD

Affected Vendors & Products

Showing 1 associated CPE
Vendor Product Version / Range
linux linux_kernel *

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-UNKNOWN

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Executive Summary

This vulnerability in the Linux kernel's coresight subsystem involves the tmc component not handling the event properly in the path. Specifically, the handle required to retrieve the AUX_EVENT of each CPU in perf mode was missing from the coresight_path, causing a kernel oops (crash) when running certain perf record commands. The issue has been fixed by adding the event handle to the path so dependent devices can access it correctly.

Impact Analysis

This vulnerability can cause the Linux kernel to crash (kernel oops) when using perf record with certain events, potentially leading to system instability or denial of service during performance monitoring activities.

Detection Guidance

This vulnerability can be detected by reproducing the bug using the command: perf record -e cs_etm//k -C 0-9 dd if=/dev/zero of=/dev/null. If the system shows a kernel oops with a message similar to 'Unable to handle kernel paging request at virtual address ...' and a call trace involving coresight_tmc and coresight_catu modules, it indicates the presence of the vulnerability.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-68370. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart