{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2025-39799", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "state": "PUBLISHED", "assignerShortName": "Linux", "dateReserved": "2025-04-16T07:20:57.133Z", "datePublished": "2025-09-12T15:59:35.221Z", "dateUpdated": "2025-09-12T15:59:35.221Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2025-09-12T15:59:35.221Z"}, "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nACPI: processor: perflib: Move problematic pr->performance check\n\nCommit d33bd88ac0eb (\"ACPI: processor: perflib: Fix initial _PPC limit\napplication\") added a pr->performance check that prevents the frequency\nQoS request from being added when the given processor has no performance\nobject. Unfortunately, this causes a WARN() in freq_qos_remove_request()\nto trigger on an attempt to take the given CPU offline later because the\nfrequency QoS object has not been added for it due to the missing\nperformance object.\n\nAddress this by moving the pr->performance check before calling\nacpi_processor_get_platform_limit() so it only prevents a limit from\nbeing set for the CPU if the performance object is not present. This\nway, the frequency QoS request is added as it was before the above\ncommit and it is present all the time along with the CPU's cpufreq\npolicy regardless of whether or not the CPU is online."}], "affected": [{"product": "Linux", "vendor": "Linux", "defaultStatus": "unaffected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/acpi/processor_perflib.c"], "versions": [{"version": "bd844a24e56c1869adbf94ab4e30e655323495c7", "lessThan": "cb4b5f4a1e778f6a20d06d4eda6842714a817618", "status": "affected", "versionType": "git"}, {"version": "608327a281efc9a68eec6cd5af42d536826c74d0", "lessThan": "fc36403e741d7674a44632313db33fa7605cb2b4", "status": "affected", "versionType": "git"}, {"version": "40f8fea730ce1b1c09b76d403879debb74d662e0", "lessThan": "edc065c19257adfd9c356178dac021df661e169e", "status": "affected", "versionType": "git"}, {"version": "81314c7f1ff0b4b942d87bff6a87f3a2faf7ab5f", "lessThan": "fd9cad6b0676e0bb3a98ee0a8865a86e2f53eb07", "status": "affected", "versionType": "git"}, {"version": "cb2e6e275d1971c335a5e090eb97b5d3dde9cb1e", "lessThan": "19849010c9e18d54375091864a3313fc328d6186", "status": "affected", "versionType": "git"}, {"version": "8cc2020d910f960b5f6708b590d14365fd19c724", "lessThan": "bf2809541497749c4f2646b87bf75244f5a2a5d9", "status": "affected", "versionType": "git"}, {"version": "d1f804389c6195b0f08a3b992627377176975c28", "lessThan": "8972d7dbdac029c9dbf62a45d7d8c71999785765", "status": "affected", "versionType": "git"}, {"version": "8da7cdcb4a6013285907778ccdd093eb33fb68fe", "lessThan": "31ee723d6fc581b76396994a96b85be3e87f67d6", "status": "affected", "versionType": "git"}, {"version": "d33bd88ac0ebb49e7f7c8f29a8c7ee9eae85d765", "lessThan": "d405ec23df13e6df599f5bd965a55d13420366b8", "status": "affected", "versionType": "git"}]}, {"product": "Linux", "vendor": "Linux", "defaultStatus": "affected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/acpi/processor_perflib.c"], "versions": [{"version": "6.17-rc1", "status": "affected"}, {"version": "0", "lessThan": "6.17-rc1", "status": "unaffected", "versionType": "semver"}, {"version": "6.17-rc2", "lessThanOrEqual": "*", "status": "unaffected", "versionType": "original_commit_for_fix"}]}], "cpeApplicability": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.17-rc1", "versionEndExcluding": "6.17-rc2"}]}]}], "references": [{"url": "https://git.kernel.org/stable/c/cb4b5f4a1e778f6a20d06d4eda6842714a817618"}, {"url": "https://git.kernel.org/stable/c/fc36403e741d7674a44632313db33fa7605cb2b4"}, {"url": "https://git.kernel.org/stable/c/edc065c19257adfd9c356178dac021df661e169e"}, {"url": "https://git.kernel.org/stable/c/fd9cad6b0676e0bb3a98ee0a8865a86e2f53eb07"}, {"url": "https://git.kernel.org/stable/c/19849010c9e18d54375091864a3313fc328d6186"}, {"url": "https://git.kernel.org/stable/c/bf2809541497749c4f2646b87bf75244f5a2a5d9"}, {"url": "https://git.kernel.org/stable/c/8972d7dbdac029c9dbf62a45d7d8c71999785765"}, {"url": "https://git.kernel.org/stable/c/31ee723d6fc581b76396994a96b85be3e87f67d6"}, {"url": "https://git.kernel.org/stable/c/d405ec23df13e6df599f5bd965a55d13420366b8"}], "title": "ACPI: processor: perflib: Move problematic pr->performance check", "x_generator": {"engine": "bippy-1.2.0"}}}}

{}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nACPI: processor: perflib: Move problematic pr->performance check\n\nCommit d33bd88ac0eb (\"ACPI: processor: perflib: Fix initial _PPC limit\napplication\") added a pr->performance check that prevents the frequency\nQoS request from being added when the given processor has no performance\nobject. Unfortunately, this causes a WARN() in freq_qos_remove_request()\nto trigger on an attempt to take the given CPU offline later because the\nfrequency QoS object has not been added for it due to the missing\nperformance object.\n\nAddress this by moving the pr->performance check before calling\nacpi_processor_get_platform_limit() so it only prevents a limit from\nbeing set for the CPU if the performance object is not present. This\nway, the frequency QoS request is added as it was before the above\ncommit and it is present all the time along with the CPU's cpufreq\npolicy regardless of whether or not the CPU is online."}], "id": "CVE-2025-39799", "lastModified": "2025-09-12T16:15:34.410", "metrics": {}, "published": "2025-09-12T16:15:34.410", "references": [{"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/19849010c9e18d54375091864a3313fc328d6186"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/31ee723d6fc581b76396994a96b85be3e87f67d6"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/8972d7dbdac029c9dbf62a45d7d8c71999785765"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/bf2809541497749c4f2646b87bf75244f5a2a5d9"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/cb4b5f4a1e778f6a20d06d4eda6842714a817618"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/d405ec23df13e6df599f5bd965a55d13420366b8"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/edc065c19257adfd9c356178dac021df661e169e"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/fc36403e741d7674a44632313db33fa7605cb2b4"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/fd9cad6b0676e0bb3a98ee0a8865a86e2f53eb07"}], "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "vulnStatus": "Received"}

{}

{}