CVE-2025-21840

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A segmentation fault issue in the Linux kernel's thermal/netlink component has been resolved. The problem occurred when the intel-lpmd tool, which uses the THERMAL GENL ATTR CPU CAPABILITY attribute, encountered a segmentation fault due to a change in the attribute's raw value. This change was introduced by a commit that added new commands and events for thresholds, affecting existing attributes and potentially causing maintenance burdens for userspace thermal netlink event users.

Recommendations To resolve the issue, move the newly introduced THERMAL GENL ATTR TZ PREV TEMP attribute to the end of the enum thermal genl attr, ensuring that all existing thermal generic netlink attributes remain unaffected. At the moment, there is no information about a newer version that contains a fix for this vulnerability.