CVE-2025-39752

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions: Linux kernel (affected versions not specified)

Description: The Linux kernel contains a flaw related to symmetric multiprocessing (SMP) initialization on ARM-based Rockchip systems. Specifically, the issue involves writing trampoline code to SRAM while secondary CPUs are powered on, potentially leading to kernel hangs. The resolution involves moving the SRAM initialization step to a point where all secondary CPUs are powered down. This addresses rare hangs observed on RK3188 processors during system startup.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-364

Related Identifiers

AZL-67214

AZL-73950

BDU:2025-16060

CVE-2025-39752

DLA-4327-1

DLA-4328-1

DSA-6009-1

ECHO-838A-EC92-A2A7

OESA-2025-2407

OESA-2025-2408

OESA-2025-2465

OESA-2025-2466

OESA-2025-2467

USN-7909-1

USN-7909-2

USN-7909-3

USN-7909-4

USN-7909-5

USN-7910-1

USN-7910-2

USN-7933-1

USN-7938-1

USN-8028-1

USN-8028-2

USN-8028-3

USN-8028-4

USN-8028-5

USN-8028-6

USN-8028-7

USN-8028-8

USN-8031-1

USN-8031-2

USN-8031-3

USN-8052-1

USN-8052-2

USN-8074-1

USN-8074-2

USN-8126-1

Affected Products

Debian

Linuxmint

Linux Kernel

Rk3188

Red Os

Rockchip

Ubuntu

CVE-2025-39752

Weakness Enumeration

Related Identifiers

Affected Products

References · 1353