Vulnerability DatabaseCVE-2025-38689

CVE-2025-38689:
Linux Ubuntu vulnerability analysis and mitigation

Overview

A vulnerability in the Linux kernel was discovered related to a NULL pointer dereference in the AVX-512 status functionality. The issue was identified and disclosed on September 4, 2025, affecting systems with CONFIG_X86_DEBUG_FPU enabled (NVD).

Technical details

The vulnerability occurs when reading /proc/[kthread]/arch_status with CONFIG_X86_DEBUG_FPU enabled. The issue stems from the AVX-512 timestamp code using x86_task_fpu() without proper NULL checking. When CONFIG_X86_DEBUG_FPU is enabled, the function returns NULL for kernel threads (PF_KTHREAD specifically), leading to a NULL pointer dereference and warning (NVD).

Impact

The vulnerability can cause system warnings and NULL pointer dereferences when attempting to read architectural status information for kernel threads. While all kernel tasks exposed in /proc have a valid task->fpu, the impact is limited to debugging scenarios where CONFIG_X86_DEBUG_FPU is enabled (NVD).

Mitigation and workarounds

The solution involves stopping the output of AVX-512_elapsed_ms for kernel threads entirely, rather than implementing NULL checks. This approach was chosen because the AVX-512 timestamp data was only relevant for user threads, not kernel threads. The fix preserves the warning system that prevents misuse of FPU state in kernel threads (NVD).

Additional resources

Source: This report was generated using AI

Related Linux Ubuntu vulnerabilities:

CVE ID	Severity	Score	Technologies	Component name	CISA KEV exploit	Has fix	Published date
CVE-2025-24528	HIGH	7.1	Kerberos	libkadm5	No	Yes	Jan 16, 2026
CVE-2025-24531	MEDIUM	6.7	Linux Debian	pam-pkcs11	No	Yes	Jan 16, 2026
CVE-2025-15536	MEDIUM	4.8	Linux Ubuntu	opencc-devel	No	No	Jan 18, 2026
CVE-2025-43904	MEDIUM	4.2	Linux Debian	slurm_20_11-pam_slurm	No	Yes	Jan 16, 2026
CVE-2025-71144	N/A	N/A	Linux Debian	linux-gcp-fips	No	Yes	Jan 14, 2026