Data Race Vulnerability in Linux Kernel Affecting Virtio Ring by Linux Foundation
CVE-2025-38048

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
18 June 2025

What is CVE-2025-38048?

This vulnerability in the Linux kernel pertains to a data race condition within the Virtio Ring functionality. The issue arises when the function virtqueue_enable_cb_delayed sets an event_triggered variable to false, concurrently accessed by another process reading it as false, due to the race condition. While this event_triggered variable acts as a hint for optimization, its unreliable state can lead to temporary miscommunication regarding interrupt notifications when the event index is used. The flaw has been marked for resolution to enhance overall safety and reliability in data handling in the kernel context.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux 8d622d21d24803408b256d96463eac4574dcf067 < 02d2d6caee3abc9335cfca35f8eb4492173ae6f2

Linux 8d622d21d24803408b256d96463eac4574dcf067

Linux 8d622d21d24803408b256d96463eac4574dcf067

References

https://git.kernel.org/stable/c/02d2d6caee3abc9335cfca35f...
https://git.kernel.org/stable/c/b6d6419548286b2b9d2b90df8...
https://git.kernel.org/stable/c/b49b5132e4c7307599492aee1...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.