Linux Kernel Vulnerability in Google Compute Engine Timer Management
CVE-2025-39900

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 1 October 2025

What is CVE-2025-39900?

A flaw in the Linux kernel's timer management, specifically within the gen_estimator component, has been identified when using the CONFIG_PREEMPT_RT configuration. The issue arises from timer callbacks being preempted while executing, which can lead to warnings during timer operations. To mitigate this, the kernel has incorporated preempt_disable_nested() and preempt_enable_nested() calls in the est_timer() function, addressing potential race conditions that could disrupt timer execution.

Affected Version(s)

Linux d2d6422f8bd17c6bb205133e290625a564194496

Linux d2d6422f8bd17c6bb205133e290625a564194496 < 9f74c0ea9b26d1505d55b61e36b1623dd347e1d1

References

https://git.kernel.org/stable/c/a22ec2ee824be30803068a52f...

https://git.kernel.org/stable/c/e79923824c48b930609680be0...

https://git.kernel.org/stable/c/9f74c0ea9b26d1505d55b61e3...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 1, 2025
Vulnerability Reserved
Apr 16, 2025

JSON