{"document":{"aggregate_severity":{"namespace":"https://www.suse.com/support/security/rating/","text":"important"},"category":"csaf_vex","csaf_version":"2.0","distribution":{"text":"Copyright 2024 SUSE LLC. All rights reserved.","tlp":{"label":"WHITE","url":"https://www.first.org/tlp/"}},"lang":"en","notes":[{"category":"summary","text":"SUSE CVE-2025-38295","title":"Title"},{"category":"description","text":"In the Linux kernel, the following vulnerability has been resolved:\n\nperf/amlogic: Replace smp_processor_id() with raw_smp_processor_id() in meson_ddr_pmu_create()\n\nThe Amlogic DDR PMU driver meson_ddr_pmu_create() function incorrectly uses\nsmp_processor_id(), which assumes disabled preemption. This leads to kernel\nwarnings during module loading because meson_ddr_pmu_create() can be called\nin a preemptible context.\n\nFollowing kernel warning and stack trace:\n[   31.745138] [   T2289] BUG: using smp_processor_id() in preemptible [00000000] code: (udev-worker)/2289\n[   31.745154] [   T2289] caller is debug_smp_processor_id+0x28/0x38\n[   31.745172] [   T2289] CPU: 4 UID: 0 PID: 2289 Comm: (udev-worker) Tainted: GW 6.14.0-0-MANJARO-ARM #1 59519addcbca6ba8de735e151fd7b9e97aac7ff0\n[   31.745181] [   T2289] Tainted: [W]=WARN\n[   31.745183] [   T2289] Hardware name: Hardkernel ODROID-N2Plus (DT)\n[   31.745188] [   T2289] Call trace:\n[   31.745191] [   T2289]  show_stack+0x28/0x40 (C)\n[   31.745199] [   T2289]  dump_stack_lvl+0x4c/0x198\n[   31.745205] [   T2289]  dump_stack+0x20/0x50\n[   31.745209] [   T2289]  check_preemption_disabled+0xec/0xf0\n[   31.745213] [   T2289]  debug_smp_processor_id+0x28/0x38\n[   31.745216] [   T2289]  meson_ddr_pmu_create+0x200/0x560 [meson_ddr_pmu_g12 8095101c49676ad138d9961e3eddaee10acca7bd]\n[   31.745237] [   T2289]  g12_ddr_pmu_probe+0x20/0x38 [meson_ddr_pmu_g12 8095101c49676ad138d9961e3eddaee10acca7bd]\n[   31.745246] [   T2289]  platform_probe+0x98/0xe0\n[   31.745254] [   T2289]  really_probe+0x144/0x3f8\n[   31.745258] [   T2289]  __driver_probe_device+0xb8/0x180\n[   31.745261] [   T2289]  driver_probe_device+0x54/0x268\n[   31.745264] [   T2289]  __driver_attach+0x11c/0x288\n[   31.745267] [   T2289]  bus_for_each_dev+0xfc/0x160\n[   31.745274] [   T2289]  driver_attach+0x34/0x50\n[   31.745277] [   T2289]  bus_add_driver+0x160/0x2b0\n[   31.745281] [   T2289]  driver_register+0x78/0x120\n[   31.745285] [   T2289]  __platform_driver_register+0x30/0x48\n[   31.745288] [   T2289]  init_module+0x30/0xfe0 [meson_ddr_pmu_g12 8095101c49676ad138d9961e3eddaee10acca7bd]\n[   31.745298] [   T2289]  do_one_initcall+0x11c/0x438\n[   31.745303] [   T2289]  do_init_module+0x68/0x228\n[   31.745311] [   T2289]  load_module+0x118c/0x13a8\n[   31.745315] [   T2289]  __arm64_sys_finit_module+0x274/0x390\n[   31.745320] [   T2289]  invoke_syscall+0x74/0x108\n[   31.745326] [   T2289]  el0_svc_common+0x90/0xf8\n[   31.745330] [   T2289]  do_el0_svc+0x2c/0x48\n[   31.745333] [   T2289]  el0_svc+0x60/0x150\n[   31.745337] [   T2289]  el0t_64_sync_handler+0x80/0x118\n[   31.745341] [   T2289]  el0t_64_sync+0x1b8/0x1c0\n\nChanges replaces smp_processor_id() with raw_smp_processor_id() to\nensure safe CPU ID retrieval in preemptible contexts.","title":"Description of the CVE"},{"category":"legal_disclaimer","text":"CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).","title":"Terms of use"}],"publisher":{"category":"vendor","contact_details":"https://www.suse.com/support/security/contact/","name":"SUSE Product Security Team","namespace":"https://www.suse.com/"},"references":[{"category":"external","summary":"CVE-2025-38295","url":"https://www.suse.com/security/cve/CVE-2025-38295"},{"category":"external","summary":"SUSE Security Ratings","url":"https://www.suse.com/support/security/rating/"},{"category":"external","summary":"SUSE Bug 1246409 for CVE-2025-38295","url":"https://bugzilla.suse.com/1246409"}],"title":"SUSE CVE CVE-2025-38295","tracking":{"current_release_date":"2026-01-28T00:28:58Z","generator":{"date":"2025-07-10T23:23:09Z","engine":{"name":"cve-database.git:bin/generate-csaf-vex.pl","version":"1"}},"id":"CVE-2025-38295","initial_release_date":"2025-07-10T23:23:09Z","revision_history":[{"date":"2025-07-10T23:23:09Z","number":"2","summary":"Current version"},{"date":"2025-07-12T23:22:39Z","number":"3","summary":"Current version"},{"date":"2026-01-28T00:28:58Z","number":"4","summary":"severity changed from moderate to important"}],"status":"interim","version":"4"}}}