Linux Kernel Clock Rate Calculation Flaw in Sunxi-ng MP
CVE-2025-39954

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 9 October 2025

What is CVE-2025-39954?

A vulnerability exists in the Linux kernel's Sunxi-ng MP module, where the P divider offset is not considered during the .recalc_rate function for dual-divider clocks. This oversight can lead to incorrect clock rates, potentially resulting in erroneous data processing or system instability. The calculate function may return incorrect or zero clock rates, particularly when the P divider value is set to 1, risking divide-by-zero errors. This issue has been addressed in a recent patch that incorporates the necessary offset into the calculation, enhancing the reliability and accuracy of clock rate outputs.

Affected Version(s)

Linux 45717804b75eda8a76eacc04509ca4d68dd2caaf < 40108f69c372af3aea73e7829d6849a44638d662

Linux 45717804b75eda8a76eacc04509ca4d68dd2caaf < 25fbbaf515acd13399589bd5ee6de5f35740cef2

Linux 6.15

References

https://git.kernel.org/stable/c/40108f69c372af3aea73e7829...

https://git.kernel.org/stable/c/25fbbaf515acd13399589bd5e...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 9, 2025
Vulnerability Reserved
Apr 16, 2025

JSON