Performance Object Vulnerability in Linux Kernel
CVE-2025-39799

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 12 September 2025

What is CVE-2025-39799?

A recent vulnerability in the Linux kernel affects the ACPI processor's performance management. The issue originates from a commit that introduced a performance check, impacting the frequency Quality of Service (QoS) request for CPUs lacking a performance object. This flaw can cause the system to trigger a warning when attempting to take the CPU offline, resulting in unintended system behavior. The fix involves modifying the order of checks, ensuring that the frequency QoS request can be added consistently, improving overall stability when managing CPU performance.

Affected Version(s)

Linux bd844a24e56c1869adbf94ab4e30e655323495c7

Linux 608327a281efc9a68eec6cd5af42d536826c74d0

Linux 40f8fea730ce1b1c09b76d403879debb74d662e0

References

https://git.kernel.org/stable/c/cb4b5f4a1e778f6a20d06d4ed...

https://git.kernel.org/stable/c/fc36403e741d7674a44632313...

https://git.kernel.org/stable/c/edc065c19257adfd9c356178d...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 12, 2025
Vulnerability Reserved
Apr 16, 2025