5.5

CVE-2025-38404

usb: typec: displayport: Fix potential deadlock

In the Linux kernel, the following vulnerability has been resolved:

usb: typec: displayport: Fix potential deadlock

The deadlock can occur due to a recursive lock acquisition of
`cros_typec_altmode_data::mutex`.
The call chain is as follows:
1. cros_typec_altmode_work() acquires the mutex
2. typec_altmode_vdm() -> dp_altmode_vdm() ->
3. typec_altmode_exit() -> cros_typec_altmode_exit()
4. cros_typec_altmode_exit() attempts to acquire the mutex again

To prevent this, defer the `typec_altmode_exit()` call by scheduling
it rather than calling it directly from within the mutex-protected
context.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version6.1.143
LinuxLinux Kernel Version6.6.96
LinuxLinux Kernel Version6.12.36
LinuxLinux Kernel Version6.15.5
LinuxLinux Kernel Version6.16 Updaterc1
LinuxLinux Kernel Version6.16 Updaterc2
LinuxLinux Kernel Version6.16 Updaterc3
LinuxLinux Kernel Version6.16 Updaterc4
DebianDebian Linux Version11.0
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.13% 0.029
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CWE-667 Improper Locking

The product does not properly acquire or release a lock on a resource, leading to unexpected resource state changes and behaviors.

https://git.kernel.org/stable/c/099cf1fbb8afc3771f408109f62bdec66f85160e
Patch
https://git.kernel.org/stable/c/63cff9f57e86b2dc25d7487ca0118df89a665296
Patch
https://git.kernel.org/stable/c/749d9076735fb497aae60fbea9fff563f9ea3254
Patch
https://git.kernel.org/stable/c/76cf1f33e7319fe74c94ac92f9814094ee8cc84b
Patch
https://git.kernel.org/stable/c/7be0d1ea71f52595499da39cea484a895e8ed042
Patch
https://git.kernel.org/stable/c/80c25d7916a44715338d4f8924c8e52af50d0b9f
Patch
https://git.kernel.org/stable/c/c782f98eef14197affa8a7b91e6981420f109ea9
Patch
https://git.kernel.org/stable/c/eb08fca56f1f39e4038cb9bac9864464b13b00aa
Patch
https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html
Third Party Advisory
https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html
Third Party Advisory