CVE-2025-38508: 
Linux Kernel vulnerability analysis and mitigation

CVE-2025-38508 is a vulnerability discovered in the Linux kernel, specifically affecting the x86/sev component related to Secure TSC frequency calculation. The issue was disclosed on August 16, 2025, and involves a timing discrepancy in SEV-SNP VMs. The vulnerability affects Linux kernel systems utilizing AMD SEV-SNP technology (NVD, Debian Tracker).

The vulnerability stems from a mismatch between the reported and actual TSC (Time Stamp Counter) frequencies in SEV-SNP VMs. The GUEST_TSC_FREQ MSR reports a frequency based on the nominal P0 frequency, which deviates approximately 0.2% from the actual mean TSC frequency due to clocking parameters. This discrepancy accumulates over extended VM uptime, resulting in clock skew between the hypervisor and SEV-SNP VM. The issue manifests when the guest kernel relies on the reported nominal frequency for TSC-based timekeeping, while the actual frequency set during SNP_LAUNCH_START differs (Ubuntu Security).

The vulnerability causes inaccurate time calculations in affected systems, leading to early timer interrupts as perceived by the guest. This timing discrepancy can result in the guest perceiving hrtimers as firing earlier than expected, potentially affecting application timing and system operations in SEV-SNP virtual machines (Debian Tracker).

The fix involves utilizing the TSC_FACTOR from the SEV firmware's secrets page to calculate the mean TSC frequency, ensuring accurate timekeeping and mitigating clock skew in SEV-SNP VMs. The implementation uses early_ioremap_encrypted() to map the secrets page, as ioremap_encrypted() uses kmalloc() which is not available during early TSC initialization (Ubuntu Security).