AZL-66656 CVE-2025-38670 affecting package kernel for versions less than 6.6.104.2-1

🗓️ 22 Aug 2025 16:15:42Reported by GoogleType

osv

osv🔗 osv.dev👁 1 Views

Linux kernel flaw under 6.6.104.2-1 in cpu_switch_to and call_on_irq_stack risks stack mismatch.

Reporter	Title	Published	Views	Family All 222
Tenable Nessus	Amazon Linux 2023 : bpftool, kernel, kernel-devel (ALAS2023-2025-1186)	15 Sep 202500:00	–	nessus
Tenable Nessus	Amazon Linux 2023 : bpftool6.12, kernel6.12, kernel6.12-devel (ALAS2023-2025-1208)	30 Sep 202500:00	–	nessus
Tenable Nessus	Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.10-2024-053 (ALASKERNEL-5.10-2024-053)	1 Apr 202400:00	–	nessus
Tenable Nessus	Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.15-2025-089 (ALASKERNEL-5.15-2025-089)	16 Sep 202500:00	–	nessus
Tenable Nessus	Debian dla-4328 : linux-config-6.1 - security update	13 Oct 202500:00	–	nessus
Tenable Nessus	Debian dsa-6009 : affs-modules-6.1.0-37-4kc-malta-di - security update	22 Sep 202500:00	–	nessus
Tenable Nessus	openSUSE 16 Security Update : kernel (openSUSE-SU-2025-20081-1)	2 Dec 202500:00	–	nessus
Tenable Nessus	Oracle Linux 10 / 9 : Unbreakable Enterprise kernel (ELSA-2025-20662)	15 Oct 202500:00	–	nessus
Tenable Nessus	Oracle Linux 8 / 9 : Unbreakable Enterprise kernel (ELSA-2025-25757)	12 Nov 202500:00	–	nessus
Tenable Nessus	Photon OS 5.0: Linux PHSA-2025-5.0-0630	30 Sep 202500:00	–	nessus

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2025-38670

21 Apr 2026 04:37Current

5.5Medium risk

Vulners AI Score5.5

CVSS 3.17.1

EPSS0.00025

linux kernel cpu switch irq stack shadow call stack stack mismatch