Performance Management Unit Vulnerability in Linux Kernel by IBM
CVE-2025-22094

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
16 April 2025

What is CVE-2025-22094?

A vulnerability in the Linux kernel arises from improper ref-counting in the 'vpa_pmu' performance management unit. After the introduction of the vpa_pmu, which was meant to expose certain latency counters to user-space, it was found that the module's ownership was not correctly assigned. This oversight allows the module to be unloaded while active performance events are running, resulting in potential kernel crashes and null pointer dereferences. A fix has been proposed to ensure proper ref-counting and prevent this issue, ensuring system stability and reliability.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux 176cda0619b6c17a553625f6e2fcbc3981ad667d < 70ea7c5189197c6f5acdcfd8a2651be2c41e2faa

Linux 176cda0619b6c17a553625f6e2fcbc3981ad667d < 6cf045b51e2c5721db7e55305f09ee32741e00f9

Linux 176cda0619b6c17a553625f6e2fcbc3981ad667d

References

https://git.kernel.org/stable/c/70ea7c5189197c6f5acdcfd8a...
https://git.kernel.org/stable/c/6cf045b51e2c5721db7e55305...
https://git.kernel.org/stable/c/ff99d5b6a246715f2257123cd...

Timeline

  • Vulnerability published

JSON
.