CVE-2025-38565

EUVD-2025-26104

19.08.2025, 17:15

In the Linux kernel, the following vulnerability has been resolved:

perf/core: Exit early on perf_mmap() fail

When perf_mmap() fails to allocate a buffer, it still invokes the
event_mapped() callback of the related event. On X86 this might increase
the perf_rdpmc_allowed reference counter. But nothing undoes this as
perf_mmap_close() is never called in this case, which causes another
reference count leak.

Return early on failure to prevent that.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	7.8 HIGH	LOCAL	LOW	LOW	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Base Score

CVSS 3.x

EPSS Score

Percentile: 6%

Affected Products (NVD)

Vendor	Product	Version
linux	linux_kernel	4.0 ≤ 𝑥 < 5.4.297
linux	linux_kernel	5.5 ≤ 𝑥 < 5.10.241
linux	linux_kernel	5.11 ≤ 𝑥 < 5.15.190
linux	linux_kernel	5.16 ≤ 𝑥 < 6.1.148
linux	linux_kernel	6.2 ≤ 𝑥 < 6.6.102
linux	linux_kernel	6.7 ≤ 𝑥 < 6.12.42
linux	linux_kernel	6.13 ≤ 𝑥 < 6.15.10
linux	linux_kernel	6.16 ≤ 𝑥 < 6.16.1
debian	debian_linux	11.0

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

linux

bookworm	6.1.170-3 fixed
bookworm (security)	6.1.172-1 fixed
bullseye	vulnerable
bullseye (security)	5.10.251-5 fixed
forky	7.0.7-1 fixed
sid	7.0.7-1 fixed
trixie	6.12.86-1 fixed
trixie (security)	6.12.88-1 fixed

linux-6.1

bullseye (security)

6.1.172-1~deb11u1

fixed

openSUSE / SLES Releases

openSUSE Product

Release

cluster-md-kmp-default

suse enterprise server 12 SP5	4.12.14-122.272.1 fixed
suse enterprise server 15 SP5	5.14.21-150500.55.136.1 fixed

dlm-kmp-default

suse enterprise server 12 SP5	4.12.14-122.272.1 fixed
suse enterprise server 15 SP5	5.14.21-150500.55.136.1 fixed

gfs2-kmp-default

suse enterprise server 12 SP5	4.12.14-122.272.1 fixed
suse enterprise server 15 SP5	5.14.21-150500.55.136.1 fixed

kernel-64kb

suse enterprise desktop 15 SP6	6.4.0-150600.23.70.1 fixed
suse enterprise desktop 15 SP7	6.4.0-150700.53.16.1 fixed
suse enterprise sap 15 SP6	6.4.0-150600.23.70.1 fixed
suse enterprise sap 15 SP7	6.4.0-150700.53.16.1 fixed
suse enterprise server 15 SP4	5.14.21-150400.24.194.1 fixed
suse enterprise server 15 SP5	5.14.21-150500.55.136.1 fixed
suse enterprise server 15 SP6	6.4.0-150600.23.70.1 fixed
suse enterprise server 15 SP7	6.4.0-150700.53.16.1 fixed

kernel-azure

suse enterprise sap 15 SP6	6.4.0-150600.8.52.1 fixed
suse enterprise sap 15 SP7	6.4.0-150700.20.15.2 fixed
suse enterprise server 15 SP6	6.4.0-150600.8.52.1 fixed
suse enterprise server 15 SP7	6.4.0-150700.20.15.2 fixed

kernel-default

suse enterprise desktop 15 SP6	6.4.0-150600.23.70.1 fixed
suse enterprise desktop 15 SP7	6.4.0-150700.53.16.1 fixed
suse enterprise sap 15 SP6	6.4.0-150600.23.70.1 fixed
suse enterprise sap 15 SP7	6.4.0-150700.53.16.1 fixed
suse enterprise server 12 SP5	4.12.14-122.272.1 fixed
suse enterprise server 15 SP4	5.14.21-150400.24.194.1 fixed
suse enterprise server 15 SP5	5.14.21-150500.55.136.1 fixed
suse enterprise server 15 SP6	6.4.0-150600.23.70.1 fixed
suse enterprise server 15 SP7	6.4.0-150700.53.16.1 fixed

kernel-default-base

suse enterprise desktop 15 SP6	6.4.0-150600.23.70.1.150600.12.30.2 fixed
suse enterprise desktop 15 SP7	6.4.0-150700.53.16.1.150700.17.11.2 fixed
suse enterprise sap 15 SP6	6.4.0-150600.23.70.1.150600.12.30.2 fixed
suse enterprise sap 15 SP7	6.4.0-150700.53.16.1.150700.17.11.2 fixed
suse enterprise server 12 SP5	4.12.14-122.272.1 fixed
suse enterprise server 15 SP4	5.14.21-150400.24.194.1.150400.24.98.3 fixed
suse enterprise server 15 SP5	5.14.21-150500.55.136.1.150500.6.67.1 fixed
suse enterprise server 15 SP6	6.4.0-150600.23.70.1.150600.12.30.2 fixed
suse enterprise server 15 SP7	6.4.0-150700.53.16.1.150700.17.11.2 fixed

kernel-default-man

suse enterprise server 12 SP5

4.12.14-122.272.1

fixed

kernel-docs

suse enterprise desktop 15 SP6	6.4.0-150600.23.70.1 fixed
suse enterprise desktop 15 SP7	6.4.0-150700.53.16.1 fixed
suse enterprise sap 15 SP6	6.4.0-150600.23.70.1 fixed
suse enterprise sap 15 SP7	6.4.0-150700.53.16.1 fixed
suse enterprise server 15 SP4	5.14.21-150400.24.194.1 fixed
suse enterprise server 15 SP5	5.14.21-150500.55.136.1 fixed
suse enterprise server 15 SP6	6.4.0-150600.23.70.1 fixed
suse enterprise server 15 SP7	6.4.0-150700.53.16.1 fixed

kernel-macros

suse enterprise desktop 15 SP6	6.4.0-150600.23.70.1 fixed
suse enterprise desktop 15 SP7	6.4.0-150700.53.16.1 fixed
suse enterprise sap 15 SP6	6.4.0-150600.23.70.1 fixed
suse enterprise sap 15 SP7	6.4.0-150700.53.16.1 fixed
suse enterprise server 12 SP5	4.12.14-122.272.1 fixed
suse enterprise server 15 SP4	5.14.21-150400.24.194.1 fixed
suse enterprise server 15 SP5	5.14.21-150500.55.136.1 fixed
suse enterprise server 15 SP6	6.4.0-150600.23.70.1 fixed
suse enterprise server 15 SP7	6.4.0-150700.53.16.1 fixed

kernel-obs-build

suse enterprise desktop 15 SP6	6.4.0-150600.23.70.1 fixed
suse enterprise desktop 15 SP7	6.4.0-150700.53.16.1 fixed
suse enterprise sap 15 SP6	6.4.0-150600.23.70.1 fixed
suse enterprise sap 15 SP7	6.4.0-150700.53.16.1 fixed
suse enterprise server 15 SP4	5.14.21-150400.24.194.1 fixed
suse enterprise server 15 SP5	5.14.21-150500.55.136.1 fixed
suse enterprise server 15 SP6	6.4.0-150600.23.70.1 fixed
suse enterprise server 15 SP7	6.4.0-150700.53.16.1 fixed

kernel-source

suse enterprise desktop 15 SP6	6.4.0-150600.23.70.1 fixed
suse enterprise desktop 15 SP7	6.4.0-150700.53.16.1 fixed
suse enterprise sap 15 SP6	6.4.0-150600.23.70.1 fixed
suse enterprise sap 15 SP7	6.4.0-150700.53.16.1 fixed
suse enterprise server 12 SP5	4.12.14-122.272.1 fixed
suse enterprise server 15 SP4	5.14.21-150400.24.194.1 fixed
suse enterprise server 15 SP5	5.14.21-150500.55.136.1 fixed
suse enterprise server 15 SP6	6.4.0-150600.23.70.1 fixed
suse enterprise server 15 SP7	6.4.0-150700.53.16.1 fixed

kernel-source-azure

suse enterprise sap 15 SP6	6.4.0-150600.8.52.1 fixed
suse enterprise sap 15 SP7	6.4.0-150700.20.15.2 fixed
suse enterprise server 15 SP6	6.4.0-150600.8.52.1 fixed
suse enterprise server 15 SP7	6.4.0-150700.20.15.2 fixed

kernel-syms

suse enterprise desktop 15 SP6	6.4.0-150600.23.70.1 fixed
suse enterprise desktop 15 SP7	6.4.0-150700.53.16.1 fixed
suse enterprise sap 15 SP6	6.4.0-150600.23.70.1 fixed
suse enterprise sap 15 SP7	6.4.0-150700.53.16.1 fixed
suse enterprise server 12 SP5	4.12.14-122.272.1 fixed
suse enterprise server 15 SP4	5.14.21-150400.24.194.1 fixed
suse enterprise server 15 SP5	5.14.21-150500.55.136.1 fixed
suse enterprise server 15 SP6	6.4.0-150600.23.70.1 fixed
suse enterprise server 15 SP7	6.4.0-150700.53.16.1 fixed

kernel-syms-azure

suse enterprise sap 15 SP6	6.4.0-150600.8.52.1 fixed
suse enterprise sap 15 SP7	6.4.0-150700.20.15.1 fixed
suse enterprise server 15 SP6	6.4.0-150600.8.52.1 fixed
suse enterprise server 15 SP7	6.4.0-150700.20.15.1 fixed

kernel-zfcpdump

suse enterprise desktop 15 SP6	6.4.0-150600.23.70.1 fixed
suse enterprise desktop 15 SP7	6.4.0-150700.53.16.1 fixed
suse enterprise sap 15 SP6	6.4.0-150600.23.70.1 fixed
suse enterprise sap 15 SP7	6.4.0-150700.53.16.1 fixed
suse enterprise server 15 SP4	5.14.21-150400.24.194.1 fixed
suse enterprise server 15 SP5	5.14.21-150500.55.136.1 fixed
suse enterprise server 15 SP6	6.4.0-150600.23.70.1 fixed
suse enterprise server 15 SP7	6.4.0-150700.53.16.1 fixed

ocfs2-kmp-default

suse enterprise server 12 SP5	4.12.14-122.272.1 fixed
suse enterprise server 15 SP5	5.14.21-150500.55.136.1 fixed

reiserfs-kmp-default

suse enterprise server 15 SP4	5.14.21-150400.24.194.1 fixed
suse enterprise server 15 SP5	5.14.21-150500.55.136.1 fixed

References

https://git.kernel.org/stable/c/07091aade394f690e7b655578140ef84d0e8d7b0

https://git.kernel.org/stable/c/163b0d1a209fe0df5476c1df2330ca12b55abf92

https://git.kernel.org/stable/c/27d44145bd576bbef9bf6165bcd78128ec3e6cbd

https://git.kernel.org/stable/c/5ffda7f3ed76ec8defc19d985e33b3b82ba07839

https://git.kernel.org/stable/c/7ff8521f30c4c2fcd4e88bd7640486602bf8a650

https://git.kernel.org/stable/c/92043120a2e992800580855498ab8507e1b22db9

https://git.kernel.org/stable/c/9b90a48c7de828a15c7a4fc565d46999c6e22d6b

https://git.kernel.org/stable/c/de85e72598d89880a02170a1cbc27b35a7d978a9

https://git.kernel.org/stable/c/f41e9eba77bf97626e04296dc5677d02816d2432

https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html

https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html