SB2025100172 - Resource management error in Linux kernel trace
Published: October 1, 2025
Security Bulletin ID
SB2025100172
Severity
Low
Patch available
YES
Number of vulnerabilities
1
Exploitation vector
Local access
Highest impact
Denial of service
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 security vulnerability.
1) Resource management error (CVE-ID: CVE-2025-39914)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to resource management error within the trace_pid_write() function in kernel/trace/trace.c. A local user can perform a denial of service (DoS) attack.
Remediation
Install update from vendor's website.
References
- https://git.kernel.org/stable/c/1262bda871dace8c6efae25f3b6a2d34f6f06d54
- https://git.kernel.org/stable/c/7583a73c53f1d1ae7a39b130eb7190a11f0a902f
- https://git.kernel.org/stable/c/793338906ff57d8c683f44fe48ca99d49c8782a7
- https://git.kernel.org/stable/c/88525accf16947ab459f8e91c27c8c53e1d612d7
- https://git.kernel.org/stable/c/cd4453c5e983cf1fd5757e9acb915adb1e4602b6