-

CVE-2025-38404

EPSS 0.04%
Veröffentlicht 25.07.2025 14:15:31
Zuletzt bearbeitet 25.07.2025 15:29:19
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
Teams Watchlist Login
Unerledigt Login

In the Linux kernel, the following vulnerability has been resolved:

usb: typec: displayport: Fix potential deadlock

The deadlock can occur due to a recursive lock acquisition of
`cros_typec_altmode_data::mutex`.
The call chain is as follows:
1. cros_typec_altmode_work() acquires the mutex
2. typec_altmode_vdm() -> dp_altmode_vdm() ->
3. typec_altmode_exit() -> cros_typec_altmode_exit()
4. cros_typec_altmode_exit() attempts to acquire the mutex again

To prevent this, defer the `typec_altmode_exit()` call by scheduling
it rather than calling it directly from within the mutex-protected
context.

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 11

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version < 749d9076735fb497aae60fbea9fff563f9ea3254

Version e0359c66c1beccbe90119a63391678eabda38007

Status affected

Version < eb08fca56f1f39e4038cb9bac9864464b13b00aa

Version e3fb6c2c3939b4aad203cacdd613a62ce1fd032c

Status affected

Version < 7be0d1ea71f52595499da39cea484a895e8ed042

Version 56846793f105cf2b39ecbde4f3ae86342091f6fc

Status affected

Version < 76cf1f33e7319fe74c94ac92f9814094ee8cc84b

Version 8e8a69b1f8c59f0505f8a1c0fb77191f27b75011

Status affected

Version < 63cff9f57e86b2dc25d7487ca0118df89a665296

Version 8851e40587013db00b71d4aeaae30f5fd59b0eec

Status affected

Version < c782f98eef14197affa8a7b91e6981420f109ea9

Version 10cc2cfd3e5d0e0ec7590c4bee8bcea10e5492c4

Status affected

Version < 80c25d7916a44715338d4f8924c8e52af50d0b9f

Version 8f6a4fa7b663468bb304cb885b93326e025ae005

Status affected

Version < 099cf1fbb8afc3771f408109f62bdec66f85160e

Version b4b38ffb38c91afd4dc387608db26f6fc34ed40b

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version < 6.1.144

Version 6.1.143

Status affected

Version < 6.6.97

Version 6.6.96

Status affected

Version < 6.12.37

Version 6.12.36

Status affected

Version < 6.15.6

Version 6.15.5

Status affected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.04%	0.103

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

https://git.kernel.org/stable/c/099cf1fbb8afc3771f408109f62bdec66f85160e

https://git.kernel.org/stable/c/63cff9f57e86b2dc25d7487ca0118df89a665296

https://git.kernel.org/stable/c/749d9076735fb497aae60fbea9fff563f9ea3254

https://git.kernel.org/stable/c/76cf1f33e7319fe74c94ac92f9814094ee8cc84b

https://git.kernel.org/stable/c/7be0d1ea71f52595499da39cea484a895e8ed042

https://git.kernel.org/stable/c/80c25d7916a44715338d4f8924c8e52af50d0b9f

https://git.kernel.org/stable/c/c782f98eef14197affa8a7b91e6981420f109ea9

https://git.kernel.org/stable/c/eb08fca56f1f39e4038cb9bac9864464b13b00aa

https://nvd.nist.gov/vuln/detail/CVE-2025-38404

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-38404

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-38404

EUVD