PT-2026-2530 · Amd+4 · Amd Machines+4

Published

2024-10-08

Updated

2026-06-16

CVE-2025-68798

CVSS v2.0

3.8

Low

Vector

AV:L/AC:H/Au:S/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.12.0-rc1-syzk

Description The Linux kernel contained a flaw in the perf/x86/amd subsystem. A race condition involving NMI and throttle mechanisms could lead to a general protection fault (GPF) on AMD machines when the cpuc->events[idx] becomes NULL. Specifically, the issue occurs within the amd pmu enable all() function. Syzkaller reported a GPF during testing. The vulnerability involves a null pointer dereference in the range [0x00000000000001a0-0x00000000000001a7]. The x86 pmu enable event function is implicated in the fault.

Recommendations Update to a version newer than 6.12.0-rc1-syzk.

Exploit

Fix

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-476

Related Identifiers

AZL-74357

BDU:2026-00714

CVE-2025-68798

ECHO-0C55-976D-C872

MGASA-2026-0017

MGASA-2026-0018

OESA-2026-1303

OESA-2026-1304

OESA-2026-1305

OPENSUSE-SU-2026:20287-1

SUSE-SU-2026:0447-1

SUSE-SU-2026:0472-1

SUSE-SU-2026:0587-1

SUSE-SU-2026:20477-1

SUSE-SU-2026:20498-1

SUSE-SU-2026:20555-1

SUSE-SU-2026:20599-1

SUSE-SU-2026:20615-1

SUSE-SU-2026:20845-1

SUSE-SU-2026:20876-1

USN-8177-1

USN-8177-2

USN-8179-1

USN-8179-2

USN-8179-3

USN-8179-4

USN-8183-1

USN-8183-2

USN-8184-1

USN-8185-1

USN-8185-2

USN-8203-1

USN-8204-1

USN-8245-1

USN-8257-1

USN-8258-1

USN-8260-1

USN-8261-1

USN-8265-1

USN-8440-1

Affected Products

Amd Machines

Linuxmint

Linux Kernel

Syzkaller

Ubuntu

PT-2026-2530 · Amd+4 · Amd Machines+4

CVE-2025-68798

Weakness Enumeration

Related Identifiers

Affected Products

References · 2622