Description
In the Linux kernel, the following vulnerability has been resolved: kasan: remove kasan_find_vm_area() to prevent possible deadlock find_vm_area() couldn't be called in atomic_context. If find_vm_area() is called to reports vm area information, kasan can trigger deadlock like: CPU0 CPU1 vmalloc(); alloc_vmap_area(); spin_lock(&vn->busy.lock) spin_lock_bh(&some_lock); <interrupt occurs> <in softirq> spin_lock(&some_lock); <access invalid address> kasan_report(); print_report(); print_address_description(); kasan_find_vm_area(); find_vm_area(); spin_lock(&vn->busy.lock) // deadlock! To prevent possible deadlock while kasan reports, remove kasan_find_vm_area().
Product status
c056a364e9546bd513d1f5205f0ee316d8acb910 (git) before 595f78d99b9051600233c0a5c4c47e1097e6ed01
c056a364e9546bd513d1f5205f0ee316d8acb910 (git) before 8377d7744bdce5c4b3f1b58924eebd3fdc078dfc
c056a364e9546bd513d1f5205f0ee316d8acb910 (git) before 2d89dab1ea6086e6cbe6fe92531b496fb6808cb9
c056a364e9546bd513d1f5205f0ee316d8acb910 (git) before 0c3566d831def922cd56322c772a7b20d8b0e0c0
c056a364e9546bd513d1f5205f0ee316d8acb910 (git) before 6ee9b3d84775944fb8c8a447961cd01274ac671c
5.18
Any version before 5.18
6.1.146 (semver)
6.6.99 (semver)
6.12.39 (semver)
6.15.7 (semver)
6.16 (original_commit_for_fix)
References
lists.debian.org/debian-lts-announce/2025/10/msg00008.html
git.kernel.org/...c/595f78d99b9051600233c0a5c4c47e1097e6ed01
git.kernel.org/...c/8377d7744bdce5c4b3f1b58924eebd3fdc078dfc
git.kernel.org/...c/2d89dab1ea6086e6cbe6fe92531b496fb6808cb9
git.kernel.org/...c/0c3566d831def922cd56322c772a7b20d8b0e0c0
git.kernel.org/...c/6ee9b3d84775944fb8c8a447961cd01274ac671c