CVE-2025-38047

{"id": "CVE-2025-38047", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.5, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 1.8}]}, "published": "2025-06-18T10:15:37.317", "references": [{"url": "https://git.kernel.org/stable/c/c42f740a07eea4807e98d2d8febc549c957a7b49", "tags": ["Patch"], "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}, {"url": "https://git.kernel.org/stable/c/e5f1e8af9c9e151ecd665f6d2e36fb25fec3b110", "tags": ["Patch"], "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}, {"url": "https://git.kernel.org/stable/c/e7090fe75a2826363c71ad1fb4e95e58141478df", "tags": ["Patch"], "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/fred: Fix system hang during S4 resume with FRED enabled\n\nUpon a wakeup from S4, the restore kernel starts and initializes the\nFRED MSRs as needed from its perspective. It then loads a hibernation\nimage, including the image kernel, and attempts to load image pages\ndirectly into their original page frames used before hibernation unless\nthose frames are currently in use. Once all pages are moved to their\noriginal locations, it jumps to a \"trampoline\" page in the image kernel.\n\nAt this point, the image kernel takes control, but the FRED MSRs still\ncontain values set by the restore kernel, which may differ from those\nset by the image kernel before hibernation. Therefore, the image kernel\nmust ensure the FRED MSRs have the same values as before hibernation.\nSince these values depend only on the location of the kernel text and\ndata, they can be recomputed from scratch."}, {"lang": "es", "value": "En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: x86/fred: Se solucion\u00f3 el bloqueo del sistema durante la reanudaci\u00f3n de S4 con FRED habilitado. Al reactivarse desde S4, el kernel de restauraci\u00f3n se inicia e inicializa los MSR de FRED seg\u00fan sea necesario. A continuaci\u00f3n, carga una imagen de hibernaci\u00f3n, incluyendo el kernel de imagen, e intenta cargar las p\u00e1ginas de la imagen directamente en los marcos de p\u00e1gina originales utilizados antes de la hibernaci\u00f3n, a menos que dichos marcos est\u00e9n en uso. Una vez que todas las p\u00e1ginas se mueven a sus ubicaciones originales, se accede a una p\u00e1gina \"trampol\u00edn\" en el kernel de imagen. En este punto, el kernel de imagen toma el control, pero los MSR de FRED a\u00fan contienen valores establecidos por el kernel de restauraci\u00f3n, que pueden diferir de los establecidos por el kernel de imagen antes de la hibernaci\u00f3n. Por lo tanto, el kernel de imagen debe garantizar que los MSR de FRED tengan los mismos valores que antes de la hibernaci\u00f3n. Dado que estos valores dependen \u00fanicamente de la ubicaci\u00f3n del texto y los datos del kernel, pueden recalcularse desde cero."}], "lastModified": "2025-11-14T17:07:39.900", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A380CB07-1886-4BA8-932E-E0F6674F568F", "versionEndExcluding": "6.12.31", "versionStartIncluding": "6.9"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A9B72DD1-715C-4101-A720-1C8D70044C06", "versionEndExcluding": "6.14.9", "versionStartIncluding": "6.13"}], "operator": "OR"}]}], "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}