CVE-2025-38624
📋 TL;DR
A resource leak vulnerability in the Linux kernel's pnv_php driver causes kernel panic when unplugging PCIe bridge configurations. This affects Linux systems with PowerNV platform PCI hotplug support, potentially leading to system crashes and denial of service.
💻 Affected Systems
- Linux kernel
📦 What is this software?
Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →⚠️ Risk & Real-World Impact
Worst Case
System kernel panic leading to complete system crash and denial of service, requiring physical or remote reboot.
Likely Case
System instability or crash when hot-unplugging PCIe devices in nested bridge configurations on PowerNV platforms.
If Mitigated
No impact if systems don't use PowerNV PCI hotplug or don't perform hot-unplug operations on affected configurations.
🎯 Exploit Status
Exploitation requires physical or privileged access to perform PCI hot-unplug operations. Not remotely exploitable.
🛠️ Fix & Mitigation
✅ Official Fix
Patch Version: Kernel versions containing commits: 1773c19fa55e944cdd2634e2d9e552f87f2d38d5, 28aa3cfce12487614219e7667ec84424e1f43227, 32173edf3fe2d447e14e5e3b299387c6f9602a88, 398170b7fd0e0db2f8096df5206c75e5ff41415a, 4668619092554e1b95c9a5ac2941ca47ba6d548a
Vendor Advisory: https://git.kernel.org/stable/c/1773c19fa55e944cdd2634e2d9e552f87f2d38d5
Restart Required: Yes
Instructions:
1. Update Linux kernel to version containing the fix commits. 2. Check distribution-specific security advisories. 3. Reboot system after kernel update.
🔧 Temporary Workarounds
Disable PCI hotplug on PowerNV
linuxPrevent triggering by disabling PCI hotplug functionality on PowerNV platforms
echo 0 > /sys/bus/pci/slots/*/power
Avoid hot-unplug operations
allDo not perform hot-unplug operations on PCIe devices in nested bridge configurations
🧯 If You Can't Patch
- Restrict physical access to PCI hotplug controls
- Implement strict change control for PCI device modifications
🔍 How to Verify
Check if Vulnerable:
Check kernel version and if PowerNV PCI hotplug is active: 'uname -r' and check for pnv_php moduleCheck Version:
uname -rVerify Fix Applied:
Verify kernel version includes fix commits: 'uname -r' and check kernel changelog for commit hashes📡 Detection & Monitoring
Log Indicators:
- Kernel panic messages referencing msi_device_data_release
- PCI hotplug related errors in dmesg
- System crash logs
Network Indicators:
- None - local vulnerability only
SIEM Query:
source="kernel" AND ("msi_device_data_release" OR "pnv_php" OR "PCI hotplug panic")🔗 References
- https://git.kernel.org/stable/c/1773c19fa55e944cdd2634e2d9e552f87f2d38d5
- https://git.kernel.org/stable/c/28aa3cfce12487614219e7667ec84424e1f43227
- https://git.kernel.org/stable/c/32173edf3fe2d447e14e5e3b299387c6f9602a88
- https://git.kernel.org/stable/c/398170b7fd0e0db2f8096df5206c75e5ff41415a
- https://git.kernel.org/stable/c/4668619092554e1b95c9a5ac2941ca47ba6d548a
- https://git.kernel.org/stable/c/8c1ad4af160691e157d688ad9619ced2df556aac
- https://git.kernel.org/stable/c/912e200240b6f9758f0b126e64a61c9227f4ad37
- https://git.kernel.org/stable/c/bbd302c4b79df10197ffa7270ca3aa572eeca33c
- https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html
