CVE-2025-39681

EUVD-2025-31543

05.09.2025, 18:15

In the Linux kernel, the following vulnerability has been resolved:

x86/cpu/hygon: Add missing resctrl_cpu_detect() in bsp_init helper

Since

  923f3a2b48bd ("x86/resctrl: Query LLC monitoring properties once during boot")

resctrl_cpu_detect() has been moved from common CPU initialization code to
the vendor-specific BSP init helper, while Hygon didn't put that call in their
code.

This triggers a division by zero fault during early booting stage on our
machines with X86_FEATURE_CQM* supported, where get_rdt_mon_resources() tries
to calculate mon_l3_config with uninitialized boot_cpu_data.x86_cache_occ_scale.

Add the missing resctrl_cpu_detect() in the Hygon BSP init helper.

  [ bp: Massage commit message. ]

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
siemens-SADP	ADP	5.5 MEDIUM	LOCAL	LOW	LOW	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Base Score

CVSS 3.x

EPSS Score

Percentile: 7%

Affected Products (NVD)

Vendor	Product	Version
linux	linux_kernel	5.8 ≤ 𝑥 < 5.10.242
linux	linux_kernel	5.11 ≤ 𝑥 < 5.15.190
linux	linux_kernel	5.16 ≤ 𝑥 < 6.1.149
linux	linux_kernel	6.2 ≤ 𝑥 < 6.6.103
linux	linux_kernel	6.7 ≤ 𝑥 < 6.12.44
linux	linux_kernel	6.13 ≤ 𝑥 < 6.16.4
linux	linux_kernel	6.17:rc1
linux	linux_kernel	6.17:rc2
debian	debian_linux	11.0

𝑥

= Vulnerable software versions

Early Detection

Affected products identified ahead of NVD analysis through intelligence sources.

Vendor	Product	Version	Source
Siemens	SIMATIC CN 4100	𝑥 < V5.0	ADP
siemens	simatic_cn_4100	𝑥 < 5.0	ADP

Debian Releases

Debian Product

Codename

linux

bookworm	6.1.170-3 fixed
bookworm (security)	6.1.174-1 fixed
bullseye	vulnerable
bullseye (security)	5.10.257-1 fixed
forky	7.0.10-1 fixed
sid	7.0.10-1 fixed
trixie	6.12.86-1 fixed
trixie (security)	6.12.90-2 fixed

linux-6.1

bullseye (security)

6.1.174-1~deb11u1

fixed

openSUSE / SLES Releases

openSUSE Product

Release

kernel-64kb

suse enterprise desktop 15 SP6	6.4.0-150600.23.73.1 fixed
suse enterprise desktop 15 SP7	6.4.0-150700.53.19.1 fixed
suse enterprise sap 15 SP6	6.4.0-150600.23.73.1 fixed
suse enterprise sap 15 SP7	6.4.0-150700.53.19.1 fixed
suse enterprise server 15 SP6	6.4.0-150600.23.73.1 fixed
suse enterprise server 15 SP7	6.4.0-150700.53.19.1 fixed

kernel-azure

suse enterprise sap 15 SP6	6.4.0-150600.8.52.1 fixed
suse enterprise sap 15 SP7	6.4.0-150700.20.15.2 fixed
suse enterprise server 15 SP6	6.4.0-150600.8.52.1 fixed
suse enterprise server 15 SP7	6.4.0-150700.20.15.2 fixed

kernel-default

suse enterprise desktop 15 SP6	6.4.0-150600.23.73.1 fixed
suse enterprise desktop 15 SP7	6.4.0-150700.53.19.1 fixed
suse enterprise sap 15 SP6	6.4.0-150600.23.73.1 fixed
suse enterprise sap 15 SP7	6.4.0-150700.53.19.1 fixed
suse enterprise server 15 SP6	6.4.0-150600.23.73.1 fixed
suse enterprise server 15 SP7	6.4.0-150700.53.19.1 fixed

kernel-default-base

suse enterprise desktop 15 SP6	6.4.0-150600.23.73.1.150600.12.32.1 fixed
suse enterprise desktop 15 SP7	6.4.0-150700.53.19.1.150700.17.13.1 fixed
suse enterprise sap 15 SP6	6.4.0-150600.23.73.1.150600.12.32.1 fixed
suse enterprise sap 15 SP7	6.4.0-150700.53.19.1.150700.17.13.1 fixed
suse enterprise server 15 SP6	6.4.0-150600.23.73.1.150600.12.32.1 fixed
suse enterprise server 15 SP7	6.4.0-150700.53.19.1.150700.17.13.1 fixed

kernel-docs

suse enterprise desktop 15 SP6	6.4.0-150600.23.73.1 fixed
suse enterprise desktop 15 SP7	6.4.0-150700.53.19.1 fixed
suse enterprise sap 15 SP6	6.4.0-150600.23.73.1 fixed
suse enterprise sap 15 SP7	6.4.0-150700.53.19.1 fixed
suse enterprise server 15 SP6	6.4.0-150600.23.73.1 fixed
suse enterprise server 15 SP7	6.4.0-150700.53.19.1 fixed

kernel-macros

suse enterprise desktop 15 SP6	6.4.0-150600.23.73.1 fixed
suse enterprise desktop 15 SP7	6.4.0-150700.53.19.1 fixed
suse enterprise sap 15 SP6	6.4.0-150600.23.73.1 fixed
suse enterprise sap 15 SP7	6.4.0-150700.53.19.1 fixed
suse enterprise server 15 SP6	6.4.0-150600.23.73.1 fixed
suse enterprise server 15 SP7	6.4.0-150700.53.19.1 fixed

kernel-obs-build

suse enterprise desktop 15 SP6	6.4.0-150600.23.73.1 fixed
suse enterprise desktop 15 SP7	6.4.0-150700.53.19.1 fixed
suse enterprise sap 15 SP6	6.4.0-150600.23.73.1 fixed
suse enterprise sap 15 SP7	6.4.0-150700.53.19.1 fixed
suse enterprise server 15 SP6	6.4.0-150600.23.73.1 fixed
suse enterprise server 15 SP7	6.4.0-150700.53.19.1 fixed

kernel-source

suse enterprise desktop 15 SP6	6.4.0-150600.23.73.1 fixed
suse enterprise desktop 15 SP7	6.4.0-150700.53.19.1 fixed
suse enterprise sap 15 SP6	6.4.0-150600.23.73.1 fixed
suse enterprise sap 15 SP7	6.4.0-150700.53.19.1 fixed
suse enterprise server 15 SP6	6.4.0-150600.23.73.1 fixed
suse enterprise server 15 SP7	6.4.0-150700.53.19.1 fixed

kernel-source-azure

suse enterprise sap 15 SP6	6.4.0-150600.8.52.1 fixed
suse enterprise sap 15 SP7	6.4.0-150700.20.15.2 fixed
suse enterprise server 15 SP6	6.4.0-150600.8.52.1 fixed
suse enterprise server 15 SP7	6.4.0-150700.20.15.2 fixed

kernel-syms

suse enterprise desktop 15 SP6	6.4.0-150600.23.73.1 fixed
suse enterprise desktop 15 SP7	6.4.0-150700.53.19.1 fixed
suse enterprise sap 15 SP6	6.4.0-150600.23.73.1 fixed
suse enterprise sap 15 SP7	6.4.0-150700.53.19.1 fixed
suse enterprise server 15 SP6	6.4.0-150600.23.73.1 fixed
suse enterprise server 15 SP7	6.4.0-150700.53.19.1 fixed

kernel-syms-azure

suse enterprise sap 15 SP6	6.4.0-150600.8.52.1 fixed
suse enterprise sap 15 SP7	6.4.0-150700.20.15.1 fixed
suse enterprise server 15 SP6	6.4.0-150600.8.52.1 fixed
suse enterprise server 15 SP7	6.4.0-150700.20.15.1 fixed

kernel-zfcpdump

suse enterprise desktop 15 SP6	6.4.0-150600.23.73.1 fixed
suse enterprise desktop 15 SP7	6.4.0-150700.53.19.1 fixed
suse enterprise sap 15 SP6	6.4.0-150600.23.73.1 fixed
suse enterprise sap 15 SP7	6.4.0-150700.53.19.1 fixed
suse enterprise server 15 SP6	6.4.0-150600.23.73.1 fixed
suse enterprise server 15 SP7	6.4.0-150700.53.19.1 fixed

Amazon Linux Releases

Amazon Package

Release

bpftool

Amazon Linux 2023

1:6.1.150-174.273.amzn2023

fixed

bpftool-debuginfo

Amazon Linux 2023

1:6.1.150-174.273.amzn2023

fixed

bpftool6.12

Amazon Linux 2023

1:6.12.46-66.121.amzn2023

fixed

bpftool6.12-debuginfo

Amazon Linux 2023

1:6.12.46-66.121.amzn2023

fixed

kernel

Amazon Linux 2023

1:6.1.150-174.273.amzn2023

fixed

kernel-debuginfo

Amazon Linux 2023

1:6.1.150-174.273.amzn2023

fixed

kernel-debuginfo-common-aarch64

Amazon Linux 2023

1:6.1.150-174.273.amzn2023

fixed

kernel-debuginfo-common-x86_64

Amazon Linux 2023

1:6.1.150-174.273.amzn2023

fixed

kernel-devel

Amazon Linux 2023

1:6.1.150-174.273.amzn2023

fixed

kernel-headers

Amazon Linux 2023

1:6.1.150-174.273.amzn2023

fixed

kernel-libbpf

Amazon Linux 2023

1:6.1.150-174.273.amzn2023

fixed

kernel-libbpf-debuginfo

Amazon Linux 2023

1:6.1.150-174.273.amzn2023

fixed

kernel-libbpf-devel

Amazon Linux 2023

1:6.1.150-174.273.amzn2023

fixed

kernel-libbpf-static

Amazon Linux 2023

1:6.1.150-174.273.amzn2023

fixed

kernel-livepatch-6.1.150-174.273

Amazon Linux 2023

1:1.0-0.amzn2023

fixed

kernel-livepatch-6.12.46-66.121

Amazon Linux 2023

1:1.0-0.amzn2023

fixed

kernel-modules-extra

Amazon Linux 2023

1:6.1.150-174.273.amzn2023

fixed

kernel-modules-extra-common

Amazon Linux 2023

1:6.1.150-174.273.amzn2023

fixed

kernel-tools

Amazon Linux 2023

1:6.1.150-174.273.amzn2023

fixed

kernel-tools-debuginfo

Amazon Linux 2023

1:6.1.150-174.273.amzn2023

fixed

kernel-tools-devel

Amazon Linux 2023

1:6.1.150-174.273.amzn2023

fixed

kernel6.12

Amazon Linux 2023

1:6.12.46-66.121.amzn2023

fixed

kernel6.12-debuginfo

Amazon Linux 2023

1:6.12.46-66.121.amzn2023

fixed

kernel6.12-debuginfo-common-aarch64

Amazon Linux 2023

1:6.12.46-66.121.amzn2023

fixed

kernel6.12-debuginfo-common-x86_64

Amazon Linux 2023

1:6.12.46-66.121.amzn2023

fixed

kernel6.12-devel

Amazon Linux 2023

1:6.12.46-66.121.amzn2023

fixed

kernel6.12-headers

Amazon Linux 2023

1:6.12.46-66.121.amzn2023

fixed

kernel6.12-libbpf

Amazon Linux 2023

1:6.12.46-66.121.amzn2023

fixed

kernel6.12-libbpf-debuginfo

Amazon Linux 2023

1:6.12.46-66.121.amzn2023

fixed

kernel6.12-libbpf-devel

Amazon Linux 2023

1:6.12.46-66.121.amzn2023

fixed

kernel6.12-libbpf-static

Amazon Linux 2023

1:6.12.46-66.121.amzn2023

fixed

kernel6.12-modules-extra

Amazon Linux 2023

1:6.12.46-66.121.amzn2023

fixed

kernel6.12-modules-extra-common

Amazon Linux 2023

1:6.12.46-66.121.amzn2023

fixed

kernel6.12-tools

Amazon Linux 2023

1:6.12.46-66.121.amzn2023

fixed

kernel6.12-tools-debuginfo

Amazon Linux 2023

1:6.12.46-66.121.amzn2023

fixed

kernel6.12-tools-devel

Amazon Linux 2023

1:6.12.46-66.121.amzn2023

fixed

perf

Amazon Linux 2023

1:6.1.150-174.273.amzn2023

fixed

perf-debuginfo

Amazon Linux 2023

1:6.1.150-174.273.amzn2023

fixed

perf6.12

Amazon Linux 2023

1:6.12.46-66.121.amzn2023

fixed

perf6.12-debuginfo

Amazon Linux 2023

1:6.12.46-66.121.amzn2023

fixed

python3-perf

Amazon Linux 2023

1:6.1.150-174.273.amzn2023

fixed

python3-perf-debuginfo

Amazon Linux 2023

1:6.1.150-174.273.amzn2023

fixed

python3-perf6.12

Amazon Linux 2023

1:6.12.46-66.121.amzn2023

fixed

python3-perf6.12-debuginfo

Amazon Linux 2023

1:6.12.46-66.121.amzn2023

fixed

Azure Linux Releases

Azure Package

Release

kernel

Azure Linux 3.0	0:6.6.104.2-1.azl3 fixed
CBL-Mariner 2.0	0:5.15.200.1-1.cm2 fixed

References

https://git.kernel.org/stable/c/62f12cde10118253348a7540e85606869bd69432

https://git.kernel.org/stable/c/7207923d8453ebfb35667c1736169f2dd796772e

https://git.kernel.org/stable/c/873f32201df8876bdb2563e3187e79149427cab4

https://git.kernel.org/stable/c/a9e5924daa954c9f585c1ca00358afe71d6781c4

https://git.kernel.org/stable/c/d23264c257a70dbe021b43b3bc2ee16134cd2c69

https://git.kernel.org/stable/c/d8df126349dad855cdfedd6bbf315bad2e901c2f

https://git.kernel.org/stable/c/fb81222c1559f89bfe3aa1010f6d112531d55353

https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html

https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html

https://cert-portal.siemens.com/productcert/html/ssa-032379.html