Vulnerability DatabaseCVE-2025-39683

CVE-2025-39683:
Linux Kernel vulnerability analysis and mitigation

Overview

CVE-2025-39683 is a vulnerability in the Linux kernel's tracing functionality, discovered and disclosed on September 5, 2025. The vulnerability affects the kernel's handling of the set_ftrace_filter when processing strings that exceed FTRACE_BUFF_MAX length (NVD).

Technical details

The vulnerability occurs when trace_get_user fails to process a string longer than FTRACE_BUFF_MAX but does not properly set the end of parser->buffer to 0. This leads to an out-of-bounds (OOB) access in the call chain ftrace_regex_release-> ftrace_process_regex->strsep->strpbrk. The issue manifests as a KASAN slab-out-of-bounds alarm when reading memory at specific addresses (NVD).

Impact

The vulnerability can trigger a slab-out-of-bounds read in the Linux kernel, potentially leading to memory disclosure or system instability. The issue affects the kernel's tracing subsystem, which is a critical component for system debugging and performance analysis (NVD).

Mitigation and workarounds

The issue has been resolved by implementing proper access limitations to parser->buffer when trace_get_user fails. Multiple kernel patches have been released to address this vulnerability (NVD).

Additional resources

Source: This report was generated using AI

View vulnerable instances

Not a customer? See how Wiz maps CVEs like this one to real cloud attack paths.

Watch 12-min demo

7.1

Score

Published September 5, 2025

Severity HIGH

CNA Score N/A

Affected Technologies

Linux Kernel
CBL Mariner

Has Public Exploit No

Has CISA KEV Exploit No

CISA KEV Release Date N/A

CISA KEV Due Date N/A

Exploitation Probability Percentile (EPSS) 5.1

Exploitation Probability (EPSS) N/A

Affected packages and libraries

kernel-rt_debug-devel
kernel-source-rt

Sources

NVD
CBL-Mariner
- CBL-Mariner 3.0 Severity HIGHHas FixAdded at: Oct 03, 2025
Debian Security Tracker
- Debian 11, 12, 13, 14 Severity HIGHHas FixAdded at: Sep 07, 2025
Echo
- Echo Severity HIGHHas FixAdded at: Nov 18, 2025
Photon Security Advisory
- Photon 4.0 Severity MEDIUMHas FixAdded at: Sep 21, 2025
- Photon 5.0 Severity MEDIUMHas FixAdded at: Oct 08, 2025
Red Hat Errata
- Red Hat 9, 10 Severity MEDIUMNo FixAdded at: Sep 07, 2025
Ubuntu Security Tracker
- Ubuntu 16.04 Severity MEDIUMNo FixAdded at: Nov 23, 2025
- Ubuntu 18.04, 24.04, 25.04 Severity MEDIUMNo FixAdded at: Sep 09, 2025
- Ubuntu 20.04, 22.04 Severity MEDIUMHas FixAdded at: Sep 09, 2025

Get a CVE risk assessment

Get a prioritized view of CVEs in your cloud—so you can focus on what's exploitable, not just what's listed.

Request assessment

Related Linux Kernel vulnerabilities:

CVE ID	Severity	Score	Technologies	Component name	CISA KEV exploit	Has fix	Published date
CVE-2025-68753	HIGH	7.8	Linux Kernel	linux-realtime	No	Yes	Jan 05, 2026
CVE-2025-68756	HIGH	7.1	Linux Kernel	linux-oracle	No	Yes	Jan 05, 2026
CVE-2025-68764	MEDIUM	5.5	Linux Kernel	linux-realtime	No	Yes	Jan 05, 2026
CVE-2025-68758	MEDIUM	5.5	Linux Kernel	kernel-zfcpdump-core	No	Yes	Jan 05, 2026
CVE-2025-68762	N/A	N/A	Linux Kernel	kernel	No	Yes	Jan 05, 2026

Free Vulnerability Assessment

Benchmark your Cloud Security Posture

Evaluate your cloud security practices across 9 security domains to benchmark your risk level and identify gaps in your defenses.

Request assessment

Additional Wiz resources

Cloud Vulnerability DB

A community-led vulnerabilities database

Cloud Threat Landscape

A threat intelligence database

PEACH

A tenant isolation framework

Get a personalized demo

Ready to see Wiz in action?

"Best User Experience I have ever seen, provides full visibility to cloud workloads."

David EstlickCISO

"Wiz provides a single pane of glass to see what is going on in our cloud environments."

Adam FletcherChief Security Officer

"We know that if Wiz identifies something as critical, it actually is."

Greg PoniatowskiHead of Threat and Vulnerability Management

Get a demo

CVE-2025-39683: Linux Kernel vulnerability analysis and mitigation