CVE-2025-37907

MEDIUM EPSS 2.1%
Published May 20, 20251y ago · Modified Jun 17, 20261w ago
5.5 CVSS 3.1
Medium
Find Similar
Published May 20, 2025 1y ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: accel/ivpu: Fix locking order in ivpu_job_submit Fix deadlock in job submission and abort handling. When a thread aborts currently executing jobs due to a fault, it first locks the global lock protecting submitted_jobs (#1). After the last job is destroyed, it proceeds to release the related context and locks file_priv (#2). Meanwhile, in the job submission thread, the file_priv lock (#2) is taken first, and then the submitted_jobs lock (#1) is obtained when a job is added to the submitted jobs list. CPU0 CPU1 ---- ---- (for example due to a fault) (jobs submissions keep coming) lock(&vdev->submitted_jobs_lock) #1 ivpu_jobs_abort_all() job_destroy() lock(&file_priv->lock) #2 lock(&vdev->submitted_jobs_lock) #1 file_priv_release() lock(&vdev->context_list_lock) lock(&file_priv->lock) #2 This order of locking causes a deadlock. To resolve this issue, change the order of locking in ivpu_job_submit().

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
2.1% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-667

Affected Products 2

VendorProductVersionRange
linuxlinux_kernel*≥6.3  –  <6.12.28
linuxlinux_kernel*≥6.13  –  <6.14.6

References 3

  • git.kernel.org https://git.kernel.org/stable/c/079d2622f8c9e0c380149645fff21d35c59ce6ff
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ab680dc6c78aa035e944ecc8c48a1caab9f39924
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/b9b70924a272c2d72023306bc56f521c056212ee
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/079d2622f8c9e0c380149645fff21d35c59ce6ff
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ab680dc6c78aa035e944ecc8c48a1caab9f39924
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/b9b70924a272c2d72023306bc56f521c056212ee
    Patch