Wiz Agents & Workflows are here
Wiz
Vulnerability DatabaseCVE-2025-39843

CVE-2025-39843
Linux Kernel vulnerability analysis and mitigation

Overview

CVE-2025-39843 is a vulnerability discovered in the Linux kernel related to a lock recursion issue in the memory management subsystem. The vulnerability was disclosed on September 19, 2025, affecting the Linux kernel's SLUB allocator functionality (NVD).

Technical details

The vulnerability occurs in the set_track_prepare() function of the Linux kernel's SLUB memory allocator. When CONFIG_DEBUG_OBJECTS_TIMERS is enabled, set_track_prepare() can trigger lock recursion while holding the per_cpu(hrtimer_bases)[n].lock. The issue arises when the function attempts to wake up kswapd while already holding this lock, potentially leading to a deadlock condition (NVD).

Impact

The vulnerability can result in a kernel deadlock condition, potentially causing system hangs or denial of service. This occurs specifically when the system attempts to perform certain memory allocation operations while debugging timers is enabled (NVD).

Mitigation and workarounds

The issue has been addressed in the Linux kernel by modifying the allocation flags to avoid waking up kswapd in set_track_prepare. For the Debian stable distribution (trixie), this vulnerability has been fixed in version 6.12.48-1 (Debian Security).

Additional resources

SourceThis report was generated using AI

Related Linux Kernel vulnerabilities:

CVE ID

Severity

Score

Technologies

Component name

CISA KEV exploit

Has fix

Published date

CVE-2026-23395CRITICAL9.1
  • Linux KernelLinux Kernel
  • linux-xilinx-zynqmp
NoYesMar 25, 2026
CVE-2026-23399MEDIUM6.5
  • Linux KernelLinux Kernel
  • kernel-rt-64k-debug-devel-matched
NoYesMar 28, 2026
CVE-2026-23398MEDIUM6.5
  • Linux KernelLinux Kernel
  • kernel-abi-stablelists
NoYesMar 26, 2026
CVE-2026-23397MEDIUM4.4
  • Linux KernelLinux Kernel
  • kernel-zfcpdump-core
NoYesMar 26, 2026
CVE-2026-31788N/AN/A
  • Linux KernelLinux Kernel
  • kernel-devel-matched
NoYesMar 25, 2026

Free Vulnerability Assessment

Benchmark your Cloud Security Posture

Evaluate your cloud security practices across 9 security domains to benchmark your risk level and identify gaps in your defenses.

Request assessment

Additional Wiz resources

Cloud Vulnerability DB

Cloud Vulnerability DB

A community-led vulnerabilities database

Cloud Threat Landscape

Cloud Threat Landscape

A threat intelligence database

PEACH

PEACH

A tenant isolation framework

Get a personalized demo

Ready to see Wiz in action?

"Best User Experience I have ever seen, provides full visibility to cloud workloads."
David EstlickCISO
"Wiz provides a single pane of glass to see what is going on in our cloud environments."
Adam FletcherChief Security Officer
"We know that if Wiz identifies something as critical, it actually is."
Greg PoniatowskiHead of Threat and Vulnerability Management
Get a demo