CVE-2025-21899

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A vulnerability in the Linux kernel has been identified, which can cause a crash when certain commands are executed. The issue arises from a corrupt named triggers list, which occurs when the event trigger register function succeeds, but the subsequent hist trigger enable function is not called, resulting in the file->triggers list not being properly populated. This can lead to a use-after-free bug, causing the kernel to crash. The estimated number of potentially affected devices worldwide is not available.

Recommendations To resolve this issue, apply the patch that moves the code around such that if event trigger register succeeds, the next thing called is hist trigger enable, which adds it to the list, keeping them together and allowing the file->triggers to be properly populated. As a temporary workaround, consider disabling the event trigger write function until a patch is available. Restrict access to the vulnerable tracing module to minimize the risk of exploitation. Avoid using the hist command in the affected tracing module until the issue is resolved.