Kernel NULL Pointer Issue in Linux Kernel Affecting AMD's KFD Debugging Component
CVE-2025-39706
What is CVE-2025-39706?
In the Linux kernel, a significant issue has been identified within the AMD Kernel Fusion Driver (KFD). This vulnerability arises from the management of the KFD debug file system, leading to a potential kernel NULL pointer dereference. The problem occurs when the KFD debugfs structure is prematurely destroyed before the corresponding work queue for the KFD process is properly cleaned up. Specifically, the sequence of destruction calls can lead to attempts to remove entries from a debugfs that has already been deleted, resulting in a hang of the kernel. This issue poses a risk due to the intricate dependencies between debugging processes and kernel memory management.
Affected Version(s)
Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2
Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 74ee7445c3b61c3bd899a54bd82c1982cb3a8206
Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 96609a51e6134542bf90e053c2cd2fe4f61ebce3