CVE-2025-38064

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A vulnerability in the Linux kernel has been identified, where virtio-console continues to write to the MMIO even after the underlying virtio-pci device is reset. This issue can cause a hang on kexec in a VM and result in invalid memory accesses. The problem is also related to IOMMUs being reset before devices, which can lead to devices continuing to access guest memory and getting errors from the IOMMU. The issue was traced down to virtio-console and can be solved by breaking all virtio devices on virtio bus shutdown, then resetting them.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-200CWE-826

Related Identifiers

AZL-63986

AZL-70295

BDU:2026-01384

CVE-2025-38064

ECHO-02AC-38EC-0121

OESA-2026-2417

OESA-2026-2418

SUSE-SU-2025:02846-1

SUSE-SU-2025:02853-1

SUSE-SU-2025:02923-1

SUSE-SU-2025:02969-1

SUSE-SU-2025:02996-1

SUSE-SU-2025:02997-1

SUSE-SU-2025:03011-1

SUSE-SU-2025:03023-1

SUSE-SU-2025:20577-1

SUSE-SU-2025:20586-1

SUSE-SU-2025:20601-1

SUSE-SU-2025:20602-1

SUSE-SU-2025_02846-1

SUSE-SU-2025_02853-1

SUSE-SU-2025_02969-1

SUSE-SU-2025_02996-1

SUSE-SU-2025_02997-1

SUSE-SU-2025_03011-1

SUSE-SU-2025_03023-1

USN-7769-1

USN-7769-2

USN-7769-3

USN-7770-1

USN-7771-1

USN-7789-1

USN-7789-2

Affected Products

Debian

Linuxmint

Linux Kernel

Suse

Ubuntu

CVE-2025-38064

Weakness Enumeration

Related Identifiers

Affected Products

References · 1467