CVE-2025-37880

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A issue in the Linux kernel has been identified where the sched yield syscall may not cause scheduling in time-travel mode, potentially leading to extreme slowdown or deadlock. This is due to a badly implemented userspace spinlock. The problem arises because no time has passed in time-travel mode, so sched yield by a userspace does not actually yield. The issue is affected by the kernel configuration, specifically CONFIG UML MAX USERSPACE ITERATIONS.

Recommendations As a temporary workaround, consider accounting time to the process whenever it executes a sched yield syscall to mitigate the issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.