Home

Description

In the Linux kernel, the following vulnerability has been resolved: locking/spinlock/debug: Fix data-race in do_raw_write_lock KCSAN reports: BUG: KCSAN: data-race in do_raw_write_lock / do_raw_write_lock write (marked) to 0xffff800009cf504c of 4 bytes by task 1102 on cpu 1: do_raw_write_lock+0x120/0x204 _raw_write_lock_irq do_exit call_usermodehelper_exec_async ret_from_fork read to 0xffff800009cf504c of 4 bytes by task 1103 on cpu 0: do_raw_write_lock+0x88/0x204 _raw_write_lock_irq do_exit call_usermodehelper_exec_async ret_from_fork value changed: 0xffffffff -> 0x00000001 Reported by Kernel Concurrency Sanitizer on: CPU: 0 PID: 1103 Comm: kworker/u4:1 6.1.111 Commit 1a365e822372 ("locking/spinlock/debug: Fix various data races") has adressed most of these races, but seems to be not consistent/not complete. >From do_raw_write_lock() only debug_write_lock_after() part has been converted to WRITE_ONCE(), but not debug_write_lock_before() part. Do it now.

PUBLISHED Reserved 2025-12-16 | Published 2025-12-22 | Updated 2025-12-22 | Assigner Linux

Product status

Default status
unaffected

1a365e822372ba24c9da0822bc583894f6f3d821 (git) before b163a5e8c703201c905d6ec7920ed79d167e8442
affected

1a365e822372ba24c9da0822bc583894f6f3d821 (git) before 16b3590c0e1e615757dade098c8fbc0d4f040c76
affected

1a365e822372ba24c9da0822bc583894f6f3d821 (git) before 396a9270a7b90886be501611b13aa636f2e8c703
affected

1a365e822372ba24c9da0822bc583894f6f3d821 (git) before c14ecb555c3ee80eeb030a4e46d00e679537f03a
affected

3106fb78d3579c8e9c9b3040f7f7841981919624 (git)
affected

c0911024ff927ba5c4786b507004cb615be1d776 (git)
affected

09226e5c38639437565af01e6009a9286a351d04 (git)
affected

c7673f01604fa722b9d7c1e29e17cec1b8ae09c5 (git)
affected

c120c3dbeb76305235c8e557f84d9e2d7d0f5933 (git)
affected

Default status
affected

5.5
affected

Any version before 5.5
unaffected

6.12.62 (semver)
unaffected

6.17.12 (semver)
unaffected

6.18.1 (semver)
unaffected

6.19-rc1 (original_commit_for_fix)
unaffected

References

git.kernel.org/...c/b163a5e8c703201c905d6ec7920ed79d167e8442

git.kernel.org/...c/16b3590c0e1e615757dade098c8fbc0d4f040c76

git.kernel.org/...c/396a9270a7b90886be501611b13aa636f2e8c703

git.kernel.org/...c/c14ecb555c3ee80eeb030a4e46d00e679537f03a

cve.org (CVE-2025-68336)

nvd.nist.gov (CVE-2025-68336)

Download JSON

Data based on CVE®. Copyright © 1999-2025, The MITRE Corporation. All rights reserved.