Home

Description

In the Linux kernel, the following vulnerability has been resolved: scsi: sg: Do not sleep in atomic context sg_finish_rem_req() calls blk_rq_unmap_user(). The latter function may sleep. Hence, call sg_finish_rem_req() with interrupts enabled instead of disabled.

PUBLISHED Reserved 2025-04-16 | Published 2025-12-04 | Updated 2025-12-04 | Assigner Linux

Product status

Default status
unaffected

97d27b0dd015e980ade63fda111fd1353276e28b (git) before 11eeee00c94d770d4e45364060b5f1526dfe567b
affected

97d27b0dd015e980ade63fda111fd1353276e28b (git) before b343cee5df7e750d9033fba33e96fc4399fa88a5
affected

97d27b0dd015e980ade63fda111fd1353276e28b (git) before b2c0340cfa25c5c1f65e8590cc1a2dc97d14ef0f
affected

97d27b0dd015e980ade63fda111fd1353276e28b (git) before 6983d8375c040bb449d2187f4a57a20de01244fe
affected

97d27b0dd015e980ade63fda111fd1353276e28b (git) before 90449f2d1e1f020835cba5417234636937dd657e
affected

8d1f3b474a89b42f957ba3bae959dd3cd16531ca (git)
affected

fa55ef3f803fc7c20be0ab809e6278c31febd875 (git)
affected

6af37613289cfd32516ada47e444b48a638829c8 (git)
affected

4a8e8e0af9a520a685e0ab2d489327d5220d7ce2 (git)
affected

ae9b6ae2e77947534e255903627cc62746ea77e2 (git)
affected

Default status
affected

4.12
affected

Any version before 4.12
unaffected

5.4.302 (semver)
unaffected

6.6.118 (semver)
unaffected

6.12.60 (semver)
unaffected

6.17.10 (semver)
unaffected

6.18 (original_commit_for_fix)
unaffected

References

git.kernel.org/...c/11eeee00c94d770d4e45364060b5f1526dfe567b

git.kernel.org/...c/b343cee5df7e750d9033fba33e96fc4399fa88a5

git.kernel.org/...c/b2c0340cfa25c5c1f65e8590cc1a2dc97d14ef0f

git.kernel.org/...c/6983d8375c040bb449d2187f4a57a20de01244fe

git.kernel.org/...c/90449f2d1e1f020835cba5417234636937dd657e

cve.org (CVE-2025-40259)

nvd.nist.gov (CVE-2025-40259)