CVE-2025-39701
published 2025-09-05CVE-2025-39701: In the Linux kernel, the following vulnerability has been resolved: ACPI: pfr_update: Fix the driver update version check The security-version-number check…
high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
In the Linux kernel, the following vulnerability has been resolved:
ACPI: pfr_update: Fix the driver update version check
The security-version-number check should be used rather
than the runtime version check for driver updates.
Otherwise, the firmware update would fail when the update binary had
a lower runtime version number than the current one.
[ rjw: Changelog edits ]
Affected
29 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | debian_linux | — | — |
| debian | linux | < linux 6.1.153-1 (bookworm) | linux 6.1.153-1 (bookworm) |
| debian | linux-6.1 | < linux 6.1.153-1 (bookworm) | linux 6.1.153-1 (bookworm) |
| linux | linux | — | — |
| linux | linux | >= 0db89fa243e5edc5de38c88b369e4c3755c5fb74 < 79300ff532bccbbf654992c7c0863b49a6c3973c | 79300ff532bccbbf654992c7c0863b49a6c3973c |
| linux | linux | >= 0db89fa243e5edc5de38c88b369e4c3755c5fb74 < cf0a88124e357bffda487cbf3cb612bb97eb97e4 | cf0a88124e357bffda487cbf3cb612bb97eb97e4 |
| linux | linux | >= 0db89fa243e5edc5de38c88b369e4c3755c5fb74 < b00219888c11519ef75d988fa8a780da68ff568e | b00219888c11519ef75d988fa8a780da68ff568e |
| linux | linux | >= 0db89fa243e5edc5de38c88b369e4c3755c5fb74 < 908094681f645d3a78e18ef90561a97029e2df7b | 908094681f645d3a78e18ef90561a97029e2df7b |
| linux | linux | >= 0db89fa243e5edc5de38c88b369e4c3755c5fb74 < 8151320c747efb22d30b035af989fed0d502176e | 8151320c747efb22d30b035af989fed0d502176e |
| linux | linux_kernel | — | — |
| linux | linux_kernel | >= 0 < 6.1.153-1 | 6.1.153-1 |
| linux | linux_kernel | >= 0 < 6.12.48-1 | 6.12.48-1 |
| linux | linux_kernel | >= 0 < 6.16.5-1 | 6.16.5-1 |
| linux | linux_kernel | >= 0 < 6.8.0-100.100 | 6.8.0-100.100 |
| linux | linux_kernel | >= 5.17 < 6.1.149 | 6.1.149 |
| linux | linux_kernel | >= 6.13 < 6.16.4 | 6.16.4 |
| linux | linux_kernel | >= 6.2 < 6.6.103 | 6.6.103 |
| linux | linux_kernel | >= 6.7 < 6.12.44 | 6.12.44 |
| msrc | azl3_kernel_6.6.96.2-1_on_azure_linux_3.0 | — | — |
| msrc | azl3_kernel_6.6.96.2-2_on_azure_linux_3.0 | — | — |
| ubuntu | linux-aws | — | — |
| ubuntu | linux-aws-6.8 | — | — |
| ubuntu | linux-gkeop | — | — |
| ubuntu | linux-nvidia | — | — |
| ubuntu | linux-nvidia-6.8 | — | — |
CVSS provenance
nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
osv7.8HIGH