-
CVE-2025-40219
- EPSS 0.08%
- Veröffentlicht 04.12.2025 14:50:42
- Zuletzt bearbeitet 15.04.2026 00:35:42
- Quelle 416baaa9-dc9f-4396-8d5f-8c081f
- CVE-Watchlists
- Unerledigt
PCI/IOV: Fix race between SR-IOV enable/disable and hotplug
In the Linux kernel, the following vulnerability has been resolved:
PCI/IOV: Fix race between SR-IOV enable/disable and hotplug
Commit 05703271c3cd ("PCI/IOV: Add PCI rescan-remove locking when
enabling/disabling SR-IOV") tried to fix a race between the VF removal
inside sriov_del_vfs() and concurrent hot unplug by taking the PCI
rescan/remove lock in sriov_del_vfs(). Similarly the PCI rescan/remove lock
was also taken in sriov_add_vfs() to protect addition of VFs.
This approach however causes deadlock on trying to remove PFs with SR-IOV
enabled because PFs disable SR-IOV during removal and this removal happens
under the PCI rescan/remove lock. So the original fix had to be reverted.
Instead of taking the PCI rescan/remove lock in sriov_add_vfs() and
sriov_del_vfs(), fix the race that occurs with SR-IOV enable and disable vs
hotplug higher up in the callchain by taking the lock in
sriov_numvfs_store() before calling into the driver's sriov_configure()
callback.Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).
HerstellerLinux
≫
Produkt
Linux
Default Statusunaffected
Version
18f9e9d150fccfa747875df6f0a9f606740762b3
Version <
3cddde484471c602bea04e6f384819d336a1ff84
Status
affected
Version
18f9e9d150fccfa747875df6f0a9f606740762b3
Version <
d7673ac466eca37ec3e6b7cc9ccdb06de3304e9b
Status
affected
Version
18f9e9d150fccfa747875df6f0a9f606740762b3
Version <
7c37920c96b85ef4255a7acc795e99e63dd38d59
Status
affected
Version
18f9e9d150fccfa747875df6f0a9f606740762b3
Version <
1047ca2d816994f31e1475e63e0c0b7825599747
Status
affected
Version
18f9e9d150fccfa747875df6f0a9f606740762b3
Version <
97c18f074ff1c12d016a0753072a3afdfa0b9611
Status
affected
Version
18f9e9d150fccfa747875df6f0a9f606740762b3
Version <
bea1d373098b22d7142da48750ce5526096425bc
Status
affected
Version
18f9e9d150fccfa747875df6f0a9f606740762b3
Version <
f3015627b6e9ddf85cfeaf42405b3c194dde2c36
Status
affected
Version
18f9e9d150fccfa747875df6f0a9f606740762b3
Version <
a5338e365c4559d7b4d7356116b0eb95b12e08d5
Status
affected
HerstellerLinux
≫
Produkt
Linux
Default Statusaffected
Version
5.0
Status
affected
Version
0
Version <
5.0
Status
unaffected
Version <=
5.10.*
Version
5.10.252
Status
unaffected
Version <=
5.15.*
Version
5.15.202
Status
unaffected
Version <=
6.1.*
Version
6.1.165
Status
unaffected
Version <=
6.6.*
Version
6.6.128
Status
unaffected
Version <=
6.12.*
Version
6.12.75
Status
unaffected
Version <=
6.18.*
Version
6.18.16
Status
unaffected
Version <=
6.19.*
Version
6.19.6
Status
unaffected
Version <=
*
Version
7.0
Status
unaffected
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. 
Login
Login| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.08% | 0.227 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|