CVE-2025-38131

Source
https://nvd.nist.gov/vuln/detail/CVE-2025-38131
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-38131.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2025-38131
Downstream
Related
Published
2025-07-03T08:35:35Z
Modified
2025-10-18T03:04:30.675987Z
Summary
coresight: prevent deactivate active config while enabling the config
Details

In the Linux kernel, the following vulnerability has been resolved:

coresight: prevent deactivate active config while enabling the config

While enable active config via cscfgcsdevenableactiveconfig(), active config could be deactivated via configfs' sysfs interface. This could make UAF issue in below scenario:

CPU0 CPU1 (sysfs enable) load module cscfgloadconfigsets() activate config. // sysfs (sysactivecnt == 1) ... cscfgcsdevenableactiveconfig() lock(csdev->cscfgcsdevlock) // here load config activate by CPU1 unlock(csdev->cscfgcsdev_lock)

                                          deactivate config // sysfs
                                          (sys_activec_cnt == 0)
                                          cscfg_unload_config_sets()
                                          unload module

// access to configdesc which freed // while unloading module. cscfgcsdevenableconfig

To address this, use cscfgconfigdesc's activecnt as a reference count which will be holded when - activate the config. - enable the activated config. and put the module reference when configactive_cnt == 0.

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
f8cce2ff3c04361b8843d8489620fda8880f668b
Fixed
dfe8224c9c7a43d356eb9f74b06868aa05f90223
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
f8cce2ff3c04361b8843d8489620fda8880f668b
Fixed
b3b4efa2e623aecaebd7c9b9e4171f5c659e9724
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
f8cce2ff3c04361b8843d8489620fda8880f668b
Fixed
31028812724cef7bd57a51525ce58a32a6d73b22
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
f8cce2ff3c04361b8843d8489620fda8880f668b
Fixed
ed42ee1ed05ff2f4c36938379057413a40c56680
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
f8cce2ff3c04361b8843d8489620fda8880f668b
Fixed
408c97c4a5e0b634dcd15bf8b8808b382e888164

Affected versions

v5.*

v5.14
v5.14-rc6
v5.14-rc7
v5.15
v5.15-rc1
v5.15-rc2
v5.15-rc3
v5.15-rc4
v5.15-rc5
v5.15-rc6
v5.15-rc7
v5.16
v5.16-rc1
v5.16-rc2
v5.16-rc3
v5.16-rc4
v5.16-rc5
v5.16-rc6
v5.16-rc7
v5.16-rc8
v5.17
v5.17-rc1
v5.17-rc2
v5.17-rc3
v5.17-rc4
v5.17-rc5
v5.17-rc6
v5.17-rc7
v5.17-rc8
v5.18
v5.18-rc1
v5.18-rc2
v5.18-rc3
v5.18-rc4
v5.18-rc5
v5.18-rc6
v5.18-rc7
v5.19
v5.19-rc1
v5.19-rc2
v5.19-rc3
v5.19-rc4
v5.19-rc5
v5.19-rc6
v5.19-rc7
v5.19-rc8

v6.*

v6.0
v6.0-rc1
v6.0-rc2
v6.0-rc3
v6.0-rc4
v6.0-rc5
v6.0-rc6
v6.0-rc7
v6.1
v6.1-rc1
v6.1-rc2
v6.1-rc3
v6.1-rc4
v6.1-rc5
v6.1-rc6
v6.1-rc7
v6.1-rc8
v6.1.1
v6.1.10
v6.1.100
v6.1.101
v6.1.102
v6.1.103
v6.1.104
v6.1.105
v6.1.106
v6.1.107
v6.1.108
v6.1.109
v6.1.11
v6.1.110
v6.1.111
v6.1.112
v6.1.113
v6.1.114
v6.1.115
v6.1.116
v6.1.117
v6.1.118
v6.1.119
v6.1.12
v6.1.120
v6.1.121
v6.1.122
v6.1.123
v6.1.124
v6.1.125
v6.1.126
v6.1.127
v6.1.128
v6.1.129
v6.1.13
v6.1.130
v6.1.131
v6.1.132
v6.1.133
v6.1.134
v6.1.135
v6.1.136
v6.1.137
v6.1.138
v6.1.139
v6.1.14
v6.1.140
v6.1.141
v6.1.15
v6.1.16
v6.1.17
v6.1.18
v6.1.19
v6.1.2
v6.1.20
v6.1.21
v6.1.22
v6.1.23
v6.1.24
v6.1.25
v6.1.26
v6.1.27
v6.1.28
v6.1.29
v6.1.3
v6.1.30
v6.1.31
v6.1.32
v6.1.33
v6.1.34
v6.1.35
v6.1.36
v6.1.37
v6.1.38
v6.1.39
v6.1.4
v6.1.40
v6.1.41
v6.1.42
v6.1.43
v6.1.44
v6.1.45
v6.1.46
v6.1.47
v6.1.48
v6.1.49
v6.1.5
v6.1.50
v6.1.51
v6.1.52
v6.1.53
v6.1.54
v6.1.55
v6.1.56
v6.1.57
v6.1.58
v6.1.59
v6.1.6
v6.1.60
v6.1.61
v6.1.62
v6.1.63
v6.1.64
v6.1.65
v6.1.66
v6.1.67
v6.1.68
v6.1.69
v6.1.7
v6.1.70
v6.1.71
v6.1.72
v6.1.73
v6.1.74
v6.1.75
v6.1.76
v6.1.77
v6.1.78
v6.1.79
v6.1.8
v6.1.80
v6.1.81
v6.1.82
v6.1.83
v6.1.84
v6.1.85
v6.1.86
v6.1.87
v6.1.88
v6.1.89
v6.1.9
v6.1.90
v6.1.91
v6.1.92
v6.1.93
v6.1.94
v6.1.95
v6.1.96
v6.1.97
v6.1.98
v6.1.99
v6.10
v6.10-rc1
v6.10-rc2
v6.10-rc3
v6.10-rc4
v6.10-rc5
v6.10-rc6
v6.10-rc7
v6.11
v6.11-rc1
v6.11-rc2
v6.11-rc3
v6.11-rc4
v6.11-rc5
v6.11-rc6
v6.11-rc7
v6.12
v6.12-rc1
v6.12-rc2
v6.12-rc3
v6.12-rc4
v6.12-rc5
v6.12-rc6
v6.12-rc7
v6.12.1
v6.12.10
v6.12.11
v6.12.12
v6.12.13
v6.12.14
v6.12.15
v6.12.16
v6.12.17
v6.12.18
v6.12.19
v6.12.2
v6.12.20
v6.12.21
v6.12.22
v6.12.23
v6.12.24
v6.12.25
v6.12.26
v6.12.27
v6.12.28
v6.12.29
v6.12.3
v6.12.30
v6.12.31
v6.12.32
v6.12.33
v6.12.4
v6.12.5
v6.12.6
v6.12.7
v6.12.8
v6.12.9
v6.13
v6.13-rc1
v6.13-rc2
v6.13-rc3
v6.13-rc4
v6.13-rc5
v6.13-rc6
v6.13-rc7
v6.14
v6.14-rc1
v6.14-rc2
v6.14-rc3
v6.14-rc4
v6.14-rc5
v6.14-rc6
v6.14-rc7
v6.15
v6.15-rc1
v6.15-rc2
v6.15-rc3
v6.15-rc4
v6.15-rc5
v6.15-rc6
v6.15-rc7
v6.15.1
v6.15.2
v6.2
v6.2-rc1
v6.2-rc2
v6.2-rc3
v6.2-rc4
v6.2-rc5
v6.2-rc6
v6.2-rc7
v6.2-rc8
v6.3
v6.3-rc1
v6.3-rc2
v6.3-rc3
v6.3-rc4
v6.3-rc5
v6.3-rc6
v6.3-rc7
v6.4
v6.4-rc1
v6.4-rc2
v6.4-rc3
v6.4-rc4
v6.4-rc5
v6.4-rc6
v6.4-rc7
v6.5
v6.5-rc1
v6.5-rc2
v6.5-rc3
v6.5-rc4
v6.5-rc5
v6.5-rc6
v6.5-rc7
v6.6
v6.6-rc1
v6.6-rc2
v6.6-rc3
v6.6-rc4
v6.6-rc5
v6.6-rc6
v6.6-rc7
v6.6.1
v6.6.10
v6.6.11
v6.6.12
v6.6.13
v6.6.14
v6.6.15
v6.6.16
v6.6.17
v6.6.18
v6.6.19
v6.6.2
v6.6.20
v6.6.21
v6.6.22
v6.6.23
v6.6.24
v6.6.25
v6.6.26
v6.6.27
v6.6.28
v6.6.29
v6.6.3
v6.6.30
v6.6.31
v6.6.32
v6.6.33
v6.6.34
v6.6.35
v6.6.36
v6.6.37
v6.6.38
v6.6.39
v6.6.4
v6.6.40
v6.6.41
v6.6.42
v6.6.43
v6.6.44
v6.6.45
v6.6.46
v6.6.47
v6.6.48
v6.6.49
v6.6.5
v6.6.50
v6.6.51
v6.6.52
v6.6.53
v6.6.54
v6.6.55
v6.6.56
v6.6.57
v6.6.58
v6.6.59
v6.6.6
v6.6.60
v6.6.61
v6.6.62
v6.6.63
v6.6.64
v6.6.65
v6.6.66
v6.6.67
v6.6.68
v6.6.69
v6.6.7
v6.6.70
v6.6.71
v6.6.72
v6.6.73
v6.6.74
v6.6.75
v6.6.76
v6.6.77
v6.6.78
v6.6.79
v6.6.8
v6.6.80
v6.6.81
v6.6.82
v6.6.83
v6.6.84
v6.6.85
v6.6.86
v6.6.87
v6.6.88
v6.6.89
v6.6.9
v6.6.90
v6.6.91
v6.6.92
v6.6.93
v6.7
v6.7-rc1
v6.7-rc2
v6.7-rc3
v6.7-rc4
v6.7-rc5
v6.7-rc6
v6.7-rc7
v6.7-rc8
v6.8
v6.8-rc1
v6.8-rc2
v6.8-rc3
v6.8-rc4
v6.8-rc5
v6.8-rc6
v6.8-rc7
v6.9
v6.9-rc1
v6.9-rc2
v6.9-rc3
v6.9-rc4
v6.9-rc5
v6.9-rc6
v6.9-rc7

Database specific

vanir_signatures

[
    {
        "digest": {
            "line_hashes": [
                "316476034846781399736937438860039587452",
                "68553778364996544839110167046587573750",
                "209487959930871632668932124396350703647",
                "237020189598855921643008279458258630390"
            ],
            "threshold": 0.9
        },
        "id": "CVE-2025-38131-0633e4b4",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@ed42ee1ed05ff2f4c36938379057413a40c56680",
        "signature_version": "v1",
        "deprecated": false,
        "target": {
            "file": "drivers/hwtracing/coresight/coresight-config.h"
        },
        "signature_type": "Line"
    },
    {
        "digest": {
            "function_hash": "187560770562747831761051116561355693422",
            "length": 837.0
        },
        "id": "CVE-2025-38131-07399f7d",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@31028812724cef7bd57a51525ce58a32a6d73b22",
        "signature_version": "v1",
        "deprecated": false,
        "target": {
            "function": "cscfg_csdev_enable_active_config",
            "file": "drivers/hwtracing/coresight/coresight-syscfg.c"
        },
        "signature_type": "Function"
    },
    {
        "digest": {
            "line_hashes": [
                "316476034846781399736937438860039587452",
                "68553778364996544839110167046587573750",
                "209487959930871632668932124396350703647",
                "237020189598855921643008279458258630390"
            ],
            "threshold": 0.9
        },
        "id": "CVE-2025-38131-0c4d9ed9",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@dfe8224c9c7a43d356eb9f74b06868aa05f90223",
        "signature_version": "v1",
        "deprecated": false,
        "target": {
            "file": "drivers/hwtracing/coresight/coresight-config.h"
        },
        "signature_type": "Line"
    },
    {
        "digest": {
            "function_hash": "187560770562747831761051116561355693422",
            "length": 837.0
        },
        "id": "CVE-2025-38131-0d187058",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@408c97c4a5e0b634dcd15bf8b8808b382e888164",
        "signature_version": "v1",
        "deprecated": false,
        "target": {
            "function": "cscfg_csdev_enable_active_config",
            "file": "drivers/hwtracing/coresight/coresight-syscfg.c"
        },
        "signature_type": "Function"
    },
    {
        "digest": {
            "function_hash": "39674022107374555976345252849690666417",
            "length": 364.0
        },
        "id": "CVE-2025-38131-0d9e7fb0",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@dfe8224c9c7a43d356eb9f74b06868aa05f90223",
        "signature_version": "v1",
        "deprecated": false,
        "target": {
            "function": "cscfg_csdev_disable_active_config",
            "file": "drivers/hwtracing/coresight/coresight-syscfg.c"
        },
        "signature_type": "Function"
    },
    {
        "digest": {
            "function_hash": "39674022107374555976345252849690666417",
            "length": 364.0
        },
        "id": "CVE-2025-38131-0db5558f",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@b3b4efa2e623aecaebd7c9b9e4171f5c659e9724",
        "signature_version": "v1",
        "deprecated": false,
        "target": {
            "function": "cscfg_csdev_disable_active_config",
            "file": "drivers/hwtracing/coresight/coresight-syscfg.c"
        },
        "signature_type": "Function"
    },
    {
        "digest": {
            "function_hash": "38497805767246997246322908121267366163",
            "length": 390.0
        },
        "id": "CVE-2025-38131-167f5bab",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@ed42ee1ed05ff2f4c36938379057413a40c56680",
        "signature_version": "v1",
        "deprecated": false,
        "target": {
            "function": "_cscfg_deactivate_config",
            "file": "drivers/hwtracing/coresight/coresight-syscfg.c"
        },
        "signature_type": "Function"
    },
    {
        "digest": {
            "line_hashes": [
                "122460723741512935396860000088121984187",
                "242703852194094434558206579799487022346",
                "207597521816896634251311017779329016335",
                "331501006786129810824147732901044994043",
                "187151814068591935353220354857111913615",
                "192052871775886940532625694865334252990",
                "49183775241149309708749695884665046862",
                "211793617259869541900212014405371786213",
                "119261465309726005751759620975391697967",
                "106988547648226856548736860591745660806",
                "114612908618436421288196747388694875427",
                "143896978121567577899826933230887095502",
                "20761988602118218471290155401224915258",
                "257871705258413407772386388318440381741",
                "80001861895377020250774630000466919759",
                "305497256210177882857147773744517544160",
                "172200196280140772576740963240355505636",
                "225174162581437426320423221536646424157",
                "116171918044991072021814436530558522060",
                "247774543964893894282994628561630520113",
                "324299095715089003023513675645831521052",
                "168678752024814808131230801785056227164",
                "99021517896148891938661054822511744261",
                "148810113775385817186892995798705664494",
                "121498915418055032350112645621348173985",
                "228931123408256740023021171823246907666",
                "187921306720487681350420624490523395654",
                "39382224367987043778884804621394080900",
                "248967754123836633726397231799536679452",
                "335262093353938068893257561734285562251",
                "94449482927620497898628675603448374784",
                "232718013616240906548311625670396922842",
                "170505347438234322739676469250377284825",
                "97777366570322889617092870449487086616",
                "327258777493398846259942388592484388497",
                "162192977443421615575343254311796625953"
            ],
            "threshold": 0.9
        },
        "id": "CVE-2025-38131-22e1c190",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@408c97c4a5e0b634dcd15bf8b8808b382e888164",
        "signature_version": "v1",
        "deprecated": false,
        "target": {
            "file": "drivers/hwtracing/coresight/coresight-syscfg.c"
        },
        "signature_type": "Line"
    },
    {
        "digest": {
            "line_hashes": [
                "316476034846781399736937438860039587452",
                "68553778364996544839110167046587573750",
                "209487959930871632668932124396350703647",
                "237020189598855921643008279458258630390"
            ],
            "threshold": 0.9
        },
        "id": "CVE-2025-38131-2bf86a86",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@408c97c4a5e0b634dcd15bf8b8808b382e888164",
        "signature_version": "v1",
        "deprecated": false,
        "target": {
            "file": "drivers/hwtracing/coresight/coresight-config.h"
        },
        "signature_type": "Line"
    },
    {
        "digest": {
            "line_hashes": [
                "316476034846781399736937438860039587452",
                "68553778364996544839110167046587573750",
                "209487959930871632668932124396350703647",
                "237020189598855921643008279458258630390"
            ],
            "threshold": 0.9
        },
        "id": "CVE-2025-38131-2d4f671b",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@31028812724cef7bd57a51525ce58a32a6d73b22",
        "signature_version": "v1",
        "deprecated": false,
        "target": {
            "file": "drivers/hwtracing/coresight/coresight-config.h"
        },
        "signature_type": "Line"
    },
    {
        "digest": {
            "line_hashes": [
                "122460723741512935396860000088121984187",
                "242703852194094434558206579799487022346",
                "207597521816896634251311017779329016335",
                "331501006786129810824147732901044994043",
                "187151814068591935353220354857111913615",
                "192052871775886940532625694865334252990",
                "49183775241149309708749695884665046862",
                "211793617259869541900212014405371786213",
                "119261465309726005751759620975391697967",
                "106988547648226856548736860591745660806",
                "114612908618436421288196747388694875427",
                "143896978121567577899826933230887095502",
                "20761988602118218471290155401224915258",
                "257871705258413407772386388318440381741",
                "80001861895377020250774630000466919759",
                "305497256210177882857147773744517544160",
                "172200196280140772576740963240355505636",
                "225174162581437426320423221536646424157",
                "116171918044991072021814436530558522060",
                "247774543964893894282994628561630520113",
                "324299095715089003023513675645831521052",
                "168678752024814808131230801785056227164",
                "99021517896148891938661054822511744261",
                "148810113775385817186892995798705664494",
                "121498915418055032350112645621348173985",
                "228931123408256740023021171823246907666",
                "187921306720487681350420624490523395654",
                "39382224367987043778884804621394080900",
                "248967754123836633726397231799536679452",
                "335262093353938068893257561734285562251",
                "94449482927620497898628675603448374784",
                "232718013616240906548311625670396922842",
                "170505347438234322739676469250377284825",
                "97777366570322889617092870449487086616",
                "327258777493398846259942388592484388497",
                "162192977443421615575343254311796625953"
            ],
            "threshold": 0.9
        },
        "id": "CVE-2025-38131-2df48422",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@ed42ee1ed05ff2f4c36938379057413a40c56680",
        "signature_version": "v1",
        "deprecated": false,
        "target": {
            "file": "drivers/hwtracing/coresight/coresight-syscfg.c"
        },
        "signature_type": "Line"
    },
    {
        "digest": {
            "function_hash": "39674022107374555976345252849690666417",
            "length": 364.0
        },
        "id": "CVE-2025-38131-2f616f81",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@ed42ee1ed05ff2f4c36938379057413a40c56680",
        "signature_version": "v1",
        "deprecated": false,
        "target": {
            "function": "cscfg_csdev_disable_active_config",
            "file": "drivers/hwtracing/coresight/coresight-syscfg.c"
        },
        "signature_type": "Function"
    },
    {
        "digest": {
            "function_hash": "38497805767246997246322908121267366163",
            "length": 390.0
        },
        "id": "CVE-2025-38131-37bef722",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@b3b4efa2e623aecaebd7c9b9e4171f5c659e9724",
        "signature_version": "v1",
        "deprecated": false,
        "target": {
            "function": "_cscfg_deactivate_config",
            "file": "drivers/hwtracing/coresight/coresight-syscfg.c"
        },
        "signature_type": "Function"
    },
    {
        "digest": {
            "function_hash": "187560770562747831761051116561355693422",
            "length": 837.0
        },
        "id": "CVE-2025-38131-4142e845",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@ed42ee1ed05ff2f4c36938379057413a40c56680",
        "signature_version": "v1",
        "deprecated": false,
        "target": {
            "function": "cscfg_csdev_enable_active_config",
            "file": "drivers/hwtracing/coresight/coresight-syscfg.c"
        },
        "signature_type": "Function"
    },
    {
        "digest": {
            "function_hash": "38497805767246997246322908121267366163",
            "length": 390.0
        },
        "id": "CVE-2025-38131-4681fe1c",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@408c97c4a5e0b634dcd15bf8b8808b382e888164",
        "signature_version": "v1",
        "deprecated": false,
        "target": {
            "function": "_cscfg_deactivate_config",
            "file": "drivers/hwtracing/coresight/coresight-syscfg.c"
        },
        "signature_type": "Function"
    },
    {
        "digest": {
            "function_hash": "85089114440178806075914880097906260989",
            "length": 573.0
        },
        "id": "CVE-2025-38131-4de6d5d9",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@408c97c4a5e0b634dcd15bf8b8808b382e888164",
        "signature_version": "v1",
        "deprecated": false,
        "target": {
            "function": "_cscfg_activate_config",
            "file": "drivers/hwtracing/coresight/coresight-syscfg.c"
        },
        "signature_type": "Function"
    },
    {
        "digest": {
            "function_hash": "187560770562747831761051116561355693422",
            "length": 837.0
        },
        "id": "CVE-2025-38131-5763b9ab",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@dfe8224c9c7a43d356eb9f74b06868aa05f90223",
        "signature_version": "v1",
        "deprecated": false,
        "target": {
            "function": "cscfg_csdev_enable_active_config",
            "file": "drivers/hwtracing/coresight/coresight-syscfg.c"
        },
        "signature_type": "Function"
    },
    {
        "digest": {
            "line_hashes": [
                "316476034846781399736937438860039587452",
                "68553778364996544839110167046587573750",
                "209487959930871632668932124396350703647",
                "237020189598855921643008279458258630390"
            ],
            "threshold": 0.9
        },
        "id": "CVE-2025-38131-5e31a96b",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@b3b4efa2e623aecaebd7c9b9e4171f5c659e9724",
        "signature_version": "v1",
        "deprecated": false,
        "target": {
            "file": "drivers/hwtracing/coresight/coresight-config.h"
        },
        "signature_type": "Line"
    },
    {
        "digest": {
            "function_hash": "38497805767246997246322908121267366163",
            "length": 390.0
        },
        "id": "CVE-2025-38131-675dc483",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@dfe8224c9c7a43d356eb9f74b06868aa05f90223",
        "signature_version": "v1",
        "deprecated": false,
        "target": {
            "function": "_cscfg_deactivate_config",
            "file": "drivers/hwtracing/coresight/coresight-syscfg.c"
        },
        "signature_type": "Function"
    },
    {
        "digest": {
            "line_hashes": [
                "195079667598487567136122105884067846297",
                "242703852194094434558206579799487022346",
                "207597521816896634251311017779329016335",
                "331501006786129810824147732901044994043",
                "187151814068591935353220354857111913615",
                "192052871775886940532625694865334252990",
                "49183775241149309708749695884665046862",
                "211793617259869541900212014405371786213",
                "119261465309726005751759620975391697967",
                "106988547648226856548736860591745660806",
                "114612908618436421288196747388694875427",
                "143896978121567577899826933230887095502",
                "20761988602118218471290155401224915258",
                "257871705258413407772386388318440381741",
                "80001861895377020250774630000466919759",
                "305497256210177882857147773744517544160",
                "172200196280140772576740963240355505636",
                "225174162581437426320423221536646424157",
                "116171918044991072021814436530558522060",
                "247774543964893894282994628561630520113",
                "324299095715089003023513675645831521052",
                "59711414724190113055733466142781046512",
                "99021517896148891938661054822511744261",
                "148810113775385817186892995798705664494",
                "121498915418055032350112645621348173985",
                "228931123408256740023021171823246907666",
                "126613385729963615533230330857747873859",
                "234833272034926860801752296566602035826",
                "3351683677238717956301823750558494969",
                "335262093353938068893257561734285562251",
                "94449482927620497898628675603448374784",
                "284182529869926863228143025853611135304",
                "100967501678393665544262232167997848641",
                "167028018164861889196366164976425879454",
                "327258777493398846259942388592484388497",
                "162192977443421615575343254311796625953"
            ],
            "threshold": 0.9
        },
        "id": "CVE-2025-38131-80de32ad",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@31028812724cef7bd57a51525ce58a32a6d73b22",
        "signature_version": "v1",
        "deprecated": false,
        "target": {
            "file": "drivers/hwtracing/coresight/coresight-syscfg.c"
        },
        "signature_type": "Line"
    },
    {
        "digest": {
            "function_hash": "39674022107374555976345252849690666417",
            "length": 364.0
        },
        "id": "CVE-2025-38131-8b4b1e69",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@31028812724cef7bd57a51525ce58a32a6d73b22",
        "signature_version": "v1",
        "deprecated": false,
        "target": {
            "function": "cscfg_csdev_disable_active_config",
            "file": "drivers/hwtracing/coresight/coresight-syscfg.c"
        },
        "signature_type": "Function"
    },
    {
        "digest": {
            "function_hash": "85089114440178806075914880097906260989",
            "length": 573.0
        },
        "id": "CVE-2025-38131-8fa3951b",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@b3b4efa2e623aecaebd7c9b9e4171f5c659e9724",
        "signature_version": "v1",
        "deprecated": false,
        "target": {
            "function": "_cscfg_activate_config",
            "file": "drivers/hwtracing/coresight/coresight-syscfg.c"
        },
        "signature_type": "Function"
    },
    {
        "digest": {
            "function_hash": "85089114440178806075914880097906260989",
            "length": 573.0
        },
        "id": "CVE-2025-38131-9a3095af",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@ed42ee1ed05ff2f4c36938379057413a40c56680",
        "signature_version": "v1",
        "deprecated": false,
        "target": {
            "function": "_cscfg_activate_config",
            "file": "drivers/hwtracing/coresight/coresight-syscfg.c"
        },
        "signature_type": "Function"
    },
    {
        "digest": {
            "line_hashes": [
                "195079667598487567136122105884067846297",
                "242703852194094434558206579799487022346",
                "207597521816896634251311017779329016335",
                "331501006786129810824147732901044994043",
                "187151814068591935353220354857111913615",
                "192052871775886940532625694865334252990",
                "49183775241149309708749695884665046862",
                "211793617259869541900212014405371786213",
                "119261465309726005751759620975391697967",
                "106988547648226856548736860591745660806",
                "114612908618436421288196747388694875427",
                "143896978121567577899826933230887095502",
                "20761988602118218471290155401224915258",
                "257871705258413407772386388318440381741",
                "80001861895377020250774630000466919759",
                "305497256210177882857147773744517544160",
                "172200196280140772576740963240355505636",
                "225174162581437426320423221536646424157",
                "116171918044991072021814436530558522060",
                "247774543964893894282994628561630520113",
                "324299095715089003023513675645831521052",
                "59711414724190113055733466142781046512",
                "99021517896148891938661054822511744261",
                "148810113775385817186892995798705664494",
                "121498915418055032350112645621348173985",
                "228931123408256740023021171823246907666",
                "126613385729963615533230330857747873859",
                "234833272034926860801752296566602035826",
                "3351683677238717956301823750558494969",
                "335262093353938068893257561734285562251",
                "94449482927620497898628675603448374784",
                "284182529869926863228143025853611135304",
                "100967501678393665544262232167997848641",
                "167028018164861889196366164976425879454",
                "327258777493398846259942388592484388497",
                "162192977443421615575343254311796625953"
            ],
            "threshold": 0.9
        },
        "id": "CVE-2025-38131-acce10ca",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@b3b4efa2e623aecaebd7c9b9e4171f5c659e9724",
        "signature_version": "v1",
        "deprecated": false,
        "target": {
            "file": "drivers/hwtracing/coresight/coresight-syscfg.c"
        },
        "signature_type": "Line"
    },
    {
        "digest": {
            "function_hash": "38497805767246997246322908121267366163",
            "length": 390.0
        },
        "id": "CVE-2025-38131-af25cf4b",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@31028812724cef7bd57a51525ce58a32a6d73b22",
        "signature_version": "v1",
        "deprecated": false,
        "target": {
            "function": "_cscfg_deactivate_config",
            "file": "drivers/hwtracing/coresight/coresight-syscfg.c"
        },
        "signature_type": "Function"
    },
    {
        "digest": {
            "function_hash": "187560770562747831761051116561355693422",
            "length": 837.0
        },
        "id": "CVE-2025-38131-bf739123",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@b3b4efa2e623aecaebd7c9b9e4171f5c659e9724",
        "signature_version": "v1",
        "deprecated": false,
        "target": {
            "function": "cscfg_csdev_enable_active_config",
            "file": "drivers/hwtracing/coresight/coresight-syscfg.c"
        },
        "signature_type": "Function"
    },
    {
        "digest": {
            "function_hash": "85089114440178806075914880097906260989",
            "length": 573.0
        },
        "id": "CVE-2025-38131-d21509d3",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@dfe8224c9c7a43d356eb9f74b06868aa05f90223",
        "signature_version": "v1",
        "deprecated": false,
        "target": {
            "function": "_cscfg_activate_config",
            "file": "drivers/hwtracing/coresight/coresight-syscfg.c"
        },
        "signature_type": "Function"
    },
    {
        "digest": {
            "function_hash": "85089114440178806075914880097906260989",
            "length": 573.0
        },
        "id": "CVE-2025-38131-d2417d95",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@31028812724cef7bd57a51525ce58a32a6d73b22",
        "signature_version": "v1",
        "deprecated": false,
        "target": {
            "function": "_cscfg_activate_config",
            "file": "drivers/hwtracing/coresight/coresight-syscfg.c"
        },
        "signature_type": "Function"
    },
    {
        "digest": {
            "line_hashes": [
                "195079667598487567136122105884067846297",
                "242703852194094434558206579799487022346",
                "207597521816896634251311017779329016335",
                "331501006786129810824147732901044994043",
                "187151814068591935353220354857111913615",
                "192052871775886940532625694865334252990",
                "49183775241149309708749695884665046862",
                "211793617259869541900212014405371786213",
                "119261465309726005751759620975391697967",
                "106988547648226856548736860591745660806",
                "114612908618436421288196747388694875427",
                "143896978121567577899826933230887095502",
                "20761988602118218471290155401224915258",
                "257871705258413407772386388318440381741",
                "80001861895377020250774630000466919759",
                "305497256210177882857147773744517544160",
                "172200196280140772576740963240355505636",
                "225174162581437426320423221536646424157",
                "116171918044991072021814436530558522060",
                "247774543964893894282994628561630520113",
                "324299095715089003023513675645831521052",
                "59711414724190113055733466142781046512",
                "99021517896148891938661054822511744261",
                "148810113775385817186892995798705664494",
                "121498915418055032350112645621348173985",
                "228931123408256740023021171823246907666",
                "126613385729963615533230330857747873859",
                "234833272034926860801752296566602035826",
                "3351683677238717956301823750558494969",
                "335262093353938068893257561734285562251",
                "94449482927620497898628675603448374784",
                "284182529869926863228143025853611135304",
                "100967501678393665544262232167997848641",
                "167028018164861889196366164976425879454",
                "327258777493398846259942388592484388497",
                "162192977443421615575343254311796625953"
            ],
            "threshold": 0.9
        },
        "id": "CVE-2025-38131-da41538b",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@dfe8224c9c7a43d356eb9f74b06868aa05f90223",
        "signature_version": "v1",
        "deprecated": false,
        "target": {
            "file": "drivers/hwtracing/coresight/coresight-syscfg.c"
        },
        "signature_type": "Line"
    },
    {
        "digest": {
            "function_hash": "39674022107374555976345252849690666417",
            "length": 364.0
        },
        "id": "CVE-2025-38131-e10f8e0b",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@408c97c4a5e0b634dcd15bf8b8808b382e888164",
        "signature_version": "v1",
        "deprecated": false,
        "target": {
            "function": "cscfg_csdev_disable_active_config",
            "file": "drivers/hwtracing/coresight/coresight-syscfg.c"
        },
        "signature_type": "Function"
    }
]

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
5.15.0
Fixed
6.1.142
Type
ECOSYSTEM
Events
Introduced
6.2.0
Fixed
6.6.94
Type
ECOSYSTEM
Events
Introduced
6.7.0
Fixed
6.12.34
Type
ECOSYSTEM
Events
Introduced
6.13.0
Fixed
6.15.3