CVE-2025-38174

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.6.65

Description: A vulnerability in the Linux kernel has been resolved, related to the thunderbolt module. The issue occurs when the tb cfg request dequeue() function is called twice for the same request, resulting in a double list del() operation from the ctl->request queue. This can cause a general protection fault due to a non-canonical address. The circumstances of the issue are unclear, but it is theorized that tb cfg request work() can be scheduled twice for a request, leading to the double dequeue. To fix this, requests without the TB CFG REQUEST ACTIVE bit set are not dequeued.

Recommendations: For Linux kernel versions prior to 6.6.65, update to version 6.6.65 or later to resolve the issue. As a temporary workaround, consider disabling the tb cfg request dequeue() function until a patch is available. Restrict access to the thunderbolt module to minimize the risk of exploitation.