PT-2025-51584 · Linux+3 · Linux Kernel+3

Published

2025-12-16

·

Updated

2026-05-26

·

CVE-2025-68171

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description The Linux kernel contains an issue related to the handling of the XFD state during signal delivery. Specifically, when a non-AMX task is preempted by an AMX-enabled task that modifies the XFD MSR, a mismatch can occur between the fpstate::xfd and the CPU’s current XFD state upon resumption of the non-AMX task. The fpu clear user states() function does not currently re-synchronize the XFD state in such scenarios. This can lead to warnings or unexpected behavior. The issue is addressed by invoking xfd update state(), which detects and corrects the mismatch when a dynamic feature is present. This also improves the sigreturn path, as fpu restore sig() may call fpu clear user states() when the sigframe is inaccessible. The vulnerable function is fpu clear user states().
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Related Identifiers

CVE-2025-68171
ECHO-744C-644E-99FA
MGASA-2026-0017
MGASA-2026-0018
OESA-2026-1075
OESA-2026-1076
OESA-2026-1759
OESA-2026-1760
OESA-2026-1761
OPENSUSE-SU-2026:20145-1
SUSE-SU-2026:0447-1
SUSE-SU-2026:0472-1
SUSE-SU-2026:0587-1
SUSE-SU-2026:20207-1
SUSE-SU-2026:20220-1
SUSE-SU-2026:20228-1
SUSE-SU-2026:20477-1
SUSE-SU-2026:20498-1
SUSE-SU-2026:20845-1
SUSE-SU-2026:20876-1
USN-8029-1
USN-8029-2
USN-8029-3
USN-8030-1
USN-8048-1
USN-8095-1
USN-8095-2
USN-8095-3
USN-8095-4
USN-8095-5
USN-8100-1
USN-8125-1
USN-8126-1
USN-8165-1
USN-8261-1

Affected Products

Debian
Linuxmint
Linux Kernel
Ubuntu