CVE-2025-23134

Description

In the Linux kernel, the following vulnerability has been resolved: ALSA: timer: Don't take register_mutex with copy_from/to_user() The infamous mmap_lock taken in copy_from/to_user() can be often problematic when it's called inside another mutex, as they might lead to deadlocks. In the case of ALSA timer code, the bad pattern is with guard(mutex)(&register_mutex) that covers copy_from/to_user() -- which was mistakenly introduced at converting to guard(), and it had been carefully worked around in the past. This patch fixes those pieces simply by moving copy_from/to_user() out of the register mutex lock again.

Reserved 2025-01-11 | Published 2025-04-16 | Updated 2025-05-26 | Assigner Linux

Product status

Default status
unaffected

3923de04c81733b30b8ed667569632272fdfed9a before 15291b561d8cc835a2eea76b394070cf8e072771
affected

3923de04c81733b30b8ed667569632272fdfed9a before 296f7a9e15aab276db11206cbc1e2ae1215d7862
affected

3923de04c81733b30b8ed667569632272fdfed9a before b074f47e55df93832bbbca1b524c501e6fea1c0d
affected

3923de04c81733b30b8ed667569632272fdfed9a before 3424c8f53bc63c87712a7fc22dc13d0cc85fb0d6
affected

Default status
affected

6.9
affected

Any version before 6.9
unaffected

6.12.23
unaffected

6.13.11
unaffected

6.14.2
unaffected

6.15
unaffected

References

git.kernel.org/...c/15291b561d8cc835a2eea76b394070cf8e072771

git.kernel.org/...c/296f7a9e15aab276db11206cbc1e2ae1215d7862

git.kernel.org/...c/b074f47e55df93832bbbca1b524c501e6fea1c0d

git.kernel.org/...c/3424c8f53bc63c87712a7fc22dc13d0cc85fb0d6

cve.org (CVE-2025-23134)

nvd.nist.gov (CVE-2025-23134)

Download JSON