PT-2025-34431 · Linux+6 · Linux Kernel+6

Published

2025-01-01

·

Updated

2026-04-20

·

CVE-2025-38670

CVSS v3.1

7.1

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
Name of the Vulnerable Software and Affected Versions: Linux kernel (affected versions not specified)
Description: The Linux kernel contains a flaw in the cpu switch to() and call on irq stack() functions related to stack manipulation and the Shadow Call Stack. Interruptions during stack changes can lead to mismatched stacks, potentially causing kernel panics, especially when CONFIG ARM64 PSEUDO NMI is enabled. The issue arises from improper handling of the DAIF (Disable All Interrupts Flag) during context switching and interrupt handling, potentially leading to tasks returning to incorrect addresses or the IRQ stack.
Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

DoS

Exposure of Resource to Wrong Sphere

Improper Resource Release

Weakness Enumeration

CWE-668CWE-404

Related Identifiers

AZL-66656
AZL-75093
BDU:2025-15770
CVE-2025-38670
DLA-4328-1
DSA-6009-1
ECHO-D83D-0F5D-DAA9
OESA-2025-2077
OESA-2025-2078
OESA-2025-2079
OESA-2025-2081
OESA-2025-2082
OPENSUSE-SU-2025:20081-1
SUSE-SU-2025:03272-1
SUSE-SU-2025:03290-1
SUSE-SU-2025:03301-1
SUSE-SU-2025:03382-1
SUSE-SU-2025:03602-1
SUSE-SU-2025:03633-1
SUSE-SU-2025:03634-1
SUSE-SU-2025:20653-1
SUSE-SU-2025:20669-1
SUSE-SU-2025:20739-1
SUSE-SU-2025:20756-1
SUSE-SU-2025:21074-1
SUSE-SU-2025:21139-1
SUSE-SU-2025:21179-1
SUSE-SU-2025_03272-1
SUSE-SU-2025_03290-1
SUSE-SU-2025_03301-1
SUSE-SU-2025_03382-1
USN-7879-1
USN-7879-2
USN-7879-3
USN-7879-4
USN-7880-1
USN-7909-1
USN-7909-2
USN-7909-3
USN-7909-4
USN-7909-5
USN-7910-1
USN-7910-2
USN-7933-1
USN-7934-1
USN-7938-1
USN-8028-1
USN-8028-2
USN-8028-3
USN-8028-4
USN-8028-5
USN-8028-6
USN-8028-7
USN-8028-8
USN-8031-1
USN-8031-2
USN-8031-3
USN-8052-1
USN-8052-2
USN-8074-1
USN-8074-2
USN-8126-1

Affected Products

Astra Linux
Debian
Linuxmint
Linux Kernel
Red Os
Suse
Ubuntu