CVE-2025-38704
Published: Sep 4, 2025
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: rcu/nocb: Fix possible invalid rdp's->nocb_cb_kthread pointer access In the preparation stage of CPU online, if the corresponding the rdp's->nocb_cb_kthread does not exist, will be created, there is a situation where the rdp's rcuop kthreads creation fails, and then de-offload this CPU's rdp, does not assign this CPU's rdp->nocb_cb_kthread pointer, but this rdp's->nocb_gp_rdp and rdp's->rdp_gp->nocb_gp_kthread is still valid. This will cause the subsequent re-offload operation of this offline CPU, which will pass the conditional check and the kthread_unpark() will access invalid rdp's->nocb_cb_kthread pointer. This commit therefore use rdp's->nocb_gp_kthread instead of rdp_gp's->nocb_gp_kthread for safety check.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 3a5761dc025da47960755ac64d9fbf1c32e8cd80 - < b097ae798298885695c339d390b48b4e39619fa7affected 3a5761dc025da47960755ac64d9fbf1c32e8cd80 - < 3da45ec1e485a1a5ad31fe9ddd467c7ee5ae4ef9affected 3a5761dc025da47960755ac64d9fbf1c32e8cd80 - < cce3d027227c69e85896af9fbc6fa9af5c68f067affected 3a5761dc025da47960755ac64d9fbf1c32e8cd80 - < 1c951683a720b17c9ecaad1932bc95b29044611faffected 3a5761dc025da47960755ac64d9fbf1c32e8cd80 - < 9b5ec8e6b31755288a07b3abeeab8cd38e9d3c9d+1 more versions |
Linux | Linux | affected 6.0unaffected 0 - < 6.0unaffected 6.1.167 - <= 6.1.*unaffected 6.6.130 - <= 6.6.*unaffected 6.12.43 - <= 6.12.*+3 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now