CVE-2025-68168

EPSS 0.04%
Veröffentlicht 16.12.2025 13:42:48
Zuletzt bearbeitet 15.04.2026 00:35:42
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

jfs: fix uninitialized waitqueue in transaction manager

In the Linux kernel, the following vulnerability has been resolved:

jfs: fix uninitialized waitqueue in transaction manager

The transaction manager initialization in txInit() was not properly
initializing TxBlock[0].waitor waitqueue, causing a crash when
txEnd(0) is called on read-only filesystems.

When a filesystem is mounted read-only, txBegin() returns tid=0 to
indicate no transaction. However, txEnd(0) still gets called and
tries to access TxBlock[0].waitor via tid_to_tblock(0), but this
waitqueue was never initialized because the initialization loop
started at index 1 instead of 0.

This causes a 'non-static key' lockdep warning and system crash:
  INFO: trying to register non-static key in txEnd

Fix by ensuring all transaction blocks including TxBlock[0] have
their waitqueues properly initialized during txInit().

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 11

CNA 2 VulnDex Vulnerability Enrichment 13

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version 2a8807f9f511c64de0c7cc9900a1683e3d72a3e5

Version < d6af7fce2e162ac68e85d3a11eb6ac8c35b24b64

Status affected

Version 5c094ca994824e038b6a97835ded4e5d1d808504

Version < 8cae9cf23e0bd424ac904e753639a587543ce03a

Status affected

Version 2febd5f81e4bfba61d9f374dcca628aff374cc56

Version < a2aa97cde9857f881920635a2e3d3b11769619c5

Status affected

Version aa7cdf487ab3fa47284daaccc3d7d5de01c6a84c

Version < d2dd7ca05a11685c314e62802a55e8d67a90e974

Status affected

Version 95e2b352c03b0a86c5717ba1d24ea20969abcacc

Version < 2a9575a372182ca075070b3cd77490dcf0c951e7

Status affected

Version 95e2b352c03b0a86c5717ba1d24ea20969abcacc

Version < cbf2f527ae4ca7c7dabce42e85e8deb58588a37e

Status affected

Version 95e2b352c03b0a86c5717ba1d24ea20969abcacc

Version < 038861414ab383b41dd35abbf9ff0ef715592d53

Status affected

Version 95e2b352c03b0a86c5717ba1d24ea20969abcacc

Version < 300b072df72694ea330c4c673c035253e07827b8

Status affected

Version a88efca805bea93cea9187dfd00835aa7093bf1b

Status affected

Version 97c1f26e4d4af55e8584e4646dd5c5fa7baf62c7

Status affected

Version b0ed8ed0428ee96092da6fefa5cfacbe4abed701

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 6.5

Status affected

Version 0

Version < 6.5

Status unaffected

Version <= 5.4.*

Version 5.4.302

Status unaffected

Version <= 5.10.*

Version 5.10.247

Status unaffected

Version <= 5.15.*

Version 5.15.197

Status unaffected

Version <= 6.1.*

Version 6.1.159

Status unaffected

Version <= 6.6.*

Version 6.6.117

Status unaffected

Version <= 6.12.*

Version 6.12.58

Status unaffected

Version <= 6.17.*

Version 6.17.8

Status unaffected

Version <= *

Version 6.18

Status unaffected

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.04%	0.131

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

Es wurden noch keine Informationen zu CWE veröffentlicht.

https://git.kernel.org/stable/c/d6af7fce2e162ac68e85d3a11eb6ac8c35b24b64

https://git.kernel.org/stable/c/8cae9cf23e0bd424ac904e753639a587543ce03a

https://git.kernel.org/stable/c/a2aa97cde9857f881920635a2e3d3b11769619c5

https://git.kernel.org/stable/c/d2dd7ca05a11685c314e62802a55e8d67a90e974

https://git.kernel.org/stable/c/2a9575a372182ca075070b3cd77490dcf0c951e7

https://git.kernel.org/stable/c/cbf2f527ae4ca7c7dabce42e85e8deb58588a37e

https://git.kernel.org/stable/c/038861414ab383b41dd35abbf9ff0ef715592d53

https://git.kernel.org/stable/c/300b072df72694ea330c4c673c035253e07827b8

https://nvd.nist.gov/vuln/detail/CVE-2025-68168

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-68168

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-68168

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2025-68168