PT-2025-36288 · Linux+8 · Linux Kernel+8

Published

2025-01-01

·

Updated

2026-04-20

·

CVE-2025-39694

CVSS v3.1

5.5

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description The Linux kernel contains a flaw in the tracing code called by the SCLP interrupt handler. Early exits occur if the SCCB address associated with an interrupt is NULL, after physical to virtual address translation. If the kernel identity mapping does not start at address zero, the resulting virtual address is never zero, causing the NULL checks to fail and potentially leading to incorrect accesses to the first page of the identity mapping.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

DoS

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-1285CWE-476

Related Identifiers

ALSA-2025:16398
ALSA-2025:16904
BDU:2025-15728
CVE-2025-39694
DLA-4328-1
DSA-6008-1
DSA-6009-1
ECHO-9C47-1ACE-7BC1
INFSA-2025_16398
MGASA-2025-0234
MGASA-2025-0235
OESA-2025-2765
OESA-2025-2766
OESA-2025-2767
OPENSUSE-SU-2025:20081-1
RHSA-2025_16398
SUSE-SU-2025:03600-1
SUSE-SU-2025:03634-1
SUSE-SU-2025:20851-1
SUSE-SU-2025:20861-1
SUSE-SU-2025:20870-1
SUSE-SU-2025:20898-1
SUSE-SU-2025:21074-1
SUSE-SU-2025:21139-1
SUSE-SU-2025:21179-1
SUSE-SU-2025:3751-1
SUSE-SU-2025:4057-1
SUSE-SU-2025:4132-1
SUSE-SU-2025:4141-1
USN-8028-1
USN-8028-2
USN-8028-3
USN-8028-4
USN-8028-5
USN-8028-6
USN-8028-7
USN-8028-8
USN-8031-1
USN-8031-2
USN-8031-3
USN-8052-1
USN-8052-2
USN-8074-1
USN-8074-2
USN-8126-1

Affected Products

Almalinux
Astra Linux
Debian
Linuxmint
Linux Kernel
Red Hat
Red Os
Suse
Ubuntu