Bug 2395198 (CVE-2025-39804) - CVE-2025-39804 kernel: lib/crypto: arm64/poly1305: Fix register corruption in no-SIMD contexts
Summary: CVE-2025-39804 kernel: lib/crypto: arm64/poly1305: Fix register corruption in...
Keywords:
Status: NEW
Alias: CVE-2025-39804
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
unspecified
unspecified
Target Milestone: ---
Assignee: Product Security DevOps Team
QA Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2025-09-15 13:01 UTC by OSIDB Bzimport
Modified: 2025-11-26 08:33 UTC (History)
0 users

Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments (Terms of Use)

Description OSIDB Bzimport 2025-09-15 13:01:29 UTC 
In the Linux kernel, the following vulnerability has been resolved:

lib/crypto: arm64/poly1305: Fix register corruption in no-SIMD contexts

Restore the SIMD usability check that was removed by commit a59e5468a921
("crypto: arm64/poly1305 - Add block-only interface").

This safety check is cheap and is well worth eliminating a footgun.
While the Poly1305 functions should not be called when SIMD registers
are unusable, if they are anyway, they should just do the right thing
instead of corrupting random tasks' registers and/or computing incorrect
MACs.  Fixing this is also needed for poly1305_kunit to pass.

Just use may_use_simd() instead of the original crypto_simd_usable(),
since poly1305_kunit won't rely on crypto_simd_disabled_for_test.
Comment 1 Keith Grant 2025-09-15 16:35:42 UTC 
Upstream advisory:
https://lore.kernel.org/linux-cve-announce/2025091551-CVE-2025-39804-bf3b@gregkh/T
Note You need to log in before you can comment on or make changes to this bug.