CVE-2025-68174

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains a flaw within the amd/amdkfd subsystem related to process management during partition switching. Specifically, the check for available processes in the switch partition only verifies if the kfd processes table is empty. The deletion of entries from this table occurs in kfd process notifier release, while the process teardown happens in kfd process wq release. This discrepancy can lead to a race condition when two processes, Process A (workqueue) and Process B (partition switch), concurrently access and modify the kfd node member. The issue is addressed by introducing an atomic counter, kfd processes count, to accurately track the number of active kfd processes. This counter is incremented upon process creation and decremented during kfd process wq release. The fix involves placing kfd processes count per kfd dev and moving the decrement operation to kfd process destroy pdds, along with bug fixes. A divide error was observed during testing, potentially indicating a crash scenario. The call trace includes functions such as deallocate sdma queue, process termination cpsch, kfd process dequeue from all devices, and kfd process wq release.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.