Vulnerability Database

318,756

Total vulnerabilities in the database

CVE-2025-39681

In the Linux kernel, the following vulnerability has been resolved:

x86/cpu/hygon: Add missing resctrl_cpu_detect() in bsp_init helper

Since

923f3a2b48bd ("x86/resctrl: Query LLC monitoring properties once during boot")

resctrl_cpu_detect() has been moved from common CPU initialization code to the vendor-specific BSP init helper, while Hygon didn't put that call in their code.

This triggers a division by zero fault during early booting stage on our machines with X86_FEATURE_CQM* supported, where get_rdt_mon_resources() tries to calculate mon_l3_config with uninitialized boot_cpu_data.x86_cache_occ_scale.

Add the missing resctrl_cpu_detect() in the Hygon BSP init helper.

[ bp: Massage commit message. ]

  • Published: Sep 5, 2025
  • Updated: Jan 9, 2026
  • CVE: CVE-2025-39681
  • Severity: Medium
  • Exploit:

CVSS v3:

  • Severity: Medium
  • Score: 5.5
  • AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

No CWE or OWASP classifications available.

Software From Fixed in
linux / linux_kernel 5.8 5.10.242
linux / linux_kernel 5.11 5.15.190
linux / linux_kernel 5.16 6.1.149
linux / linux_kernel 6.2 6.6.103
linux / linux_kernel 6.7 6.12.44
linux / linux_kernel 6.13 6.16.4
linux / linux_kernel 6.17-rc1 6.17-rc1.x
linux / linux_kernel 6.17-rc2 6.17-rc2.x
debian / debian_linux 11.0 11.0.x