CVE-2025-38047

MEDIUM EPSS 4.9%
Published Jun 18, 20251y ago · Modified Jun 17, 20261w ago
5.5 CVSS 3.1
Medium
Find Similar
Published Jun 18, 2025 1y ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: x86/fred: Fix system hang during S4 resume with FRED enabled Upon a wakeup from S4, the restore kernel starts and initializes the FRED MSRs as needed from its perspective. It then loads a hibernation image, including the image kernel, and attempts to load image pages directly into their original page frames used before hibernation unless those frames are currently in use. Once all pages are moved to their original locations, it jumps to a "trampoline" page in the image kernel. At this point, the image kernel takes control, but the FRED MSRs still contain values set by the restore kernel, which may differ from those set by the image kernel before hibernation. Therefore, the image kernel must ensure the FRED MSRs have the same values as before hibernation. Since these values depend only on the location of the kernel text and data, they can be recomputed from scratch.

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
4.9% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Affected Products 2

VendorProductVersionRange
linuxlinux_kernel*≥6.9  –  <6.12.31
linuxlinux_kernel*≥6.13  –  <6.14.9

References 3

  • git.kernel.org https://git.kernel.org/stable/c/c42f740a07eea4807e98d2d8febc549c957a7b49
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/e5f1e8af9c9e151ecd665f6d2e36fb25fec3b110
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/e7090fe75a2826363c71ad1fb4e95e58141478df
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/c42f740a07eea4807e98d2d8febc549c957a7b49
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/e5f1e8af9c9e151ecd665f6d2e36fb25fec3b110
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/e7090fe75a2826363c71ad1fb4e95e58141478df
    Patch