CVE-2025-21898

MEDIUM EPSS 8.3%
Published Apr 1, 20251y ago · Modified Jun 17, 20262w ago
5.5 CVSS 3.1
Medium
Find Similar
Published Apr 1, 2025 1y ago
Last Modified Jun 17, 2026 2w ago

Description

In the Linux kernel, the following vulnerability has been resolved: ftrace: Avoid potential division by zero in function_stat_show() Check whether denominator expression x * (x - 1) * 1000 mod {2^32, 2^64} produce zero and skip stddev computation in that case. For now don't care about rec->counter * rec->counter overflow because rec->time * rec->time overflow will likely happen earlier.

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
8.3% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-369

Affected Products 16

VendorProductVersionRange
linuxlinux_kernel*≥3.16.83  –  <3.17
linuxlinux_kernel*≥4.4.206  –  <4.5
linuxlinux_kernel*≥4.9.209  –  <4.10
linuxlinux_kernel*≥4.14.163  –  <4.15
linuxlinux_kernel*≥4.19.94  –  <4.20
linuxlinux_kernel*≥5.4.9  –  <5.4.291
linuxlinux_kernel*≥5.5  –  <5.10.235
linuxlinux_kernel*≥5.11  –  <5.15.179
linuxlinux_kernel*≥5.16  –  <6.1.130
linuxlinux_kernel*≥6.2  –  <6.6.81
linuxlinux_kernel*≥6.7  –  <6.12.18
linuxlinux_kernel*≥6.13  –  <6.13.6
linuxlinux_kernel6.14any
linuxlinux_kernel6.14any
linuxlinux_kernel6.14any
linuxlinux_kernel6.14any

References 10

  • git.kernel.org https://git.kernel.org/stable/c/3d738b53ed6cddb68e68c9874520a4bf846163b5
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/5b3d32f607f0478b414b16516cf27f9170cf66c8
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/746cc474a95473591853927b3a9792a2d671155b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/992775227843c9376773784b8b362add44592ad7
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/9cdac46fa7e854e587eb5f393fe491b6d7a9bdf6
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a1a7eb89ca0b89dc1c326eeee2596f263291aca3
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ca381f60a3bb7cfaa618d73ca411610bd7fc3149
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f58a3f8e284d0bdf94164a8e61cd4e70d337a1a3
    Patch
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2025/05/msg00030.html
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2025/05/msg00045.html

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/3d738b53ed6cddb68e68c9874520a4bf846163b5
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/5b3d32f607f0478b414b16516cf27f9170cf66c8
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/746cc474a95473591853927b3a9792a2d671155b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/992775227843c9376773784b8b362add44592ad7
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/9cdac46fa7e854e587eb5f393fe491b6d7a9bdf6
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a1a7eb89ca0b89dc1c326eeee2596f263291aca3
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ca381f60a3bb7cfaa618d73ca411610bd7fc3149
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f58a3f8e284d0bdf94164a8e61cd4e70d337a1a3
    Patch