CVE-2025-39954 — Vulnetix

CVE-2025-39954 PUBLISHED CVSS 5.5 MEDIUM

In the Linux kernel, the following vulnerability has been resolved: clk: sunxi-ng: mp: Fix dual-divider clock rate readback When dual-divider clock support was introduced, the P divider offset was left out of the .recalc_rate readback function. This causes the clock rate to become bogus or even zero (possibly due to the P divider being 1, leading to a divide-by-zero). Fix this by incorporating the P divider offset into the calculation.

EPSS 0.02% · 5.7th percentile

Risk Scores

CVSS 3.1

5.5

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS Score

0.02%

5.7th percentile

Affected Products

Vendor	Product	Versions
Linux	Linux	45717804b75eda8a76eacc04509ca4d68dd2caaf, 45717804b75eda8a76eacc04509ca4d68dd2caaf, 6.15
linux	linux_kernel	6.17, 6.15, 6.17

Exploit Intelligence

CIRCL seen: CVE-2025-39954 (circl-sighting)
https://git.kernel.org/stable/c/40108f69c372af3aea73e7829d6849a44638d662 (circl)
https://git.kernel.org/stable/c/25fbbaf515acd13399589bd5ee6de5f35740cef2 (circl)

Timeline

Jan 21, 1970 Security Advisory
Oct 9, 2025 EPSS Score
Oct 9, 2025 Coalition ESS Score
Oct 9, 2025 CVE Published
Oct 9, 2025 PoC Published
Oct 15, 2025 EPSS Score
Oct 22, 2025 EPSS Score
Oct 28, 2025 EPSS Score
Nov 3, 2025 EPSS Score
Nov 10, 2025 EPSS Score
Nov 16, 2025 EPSS Score
Nov 22, 2025 EPSS Score

References

Open in Interactive Console →