CVE-2025-38302

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2025-38302

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-38302.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2025-38302

Downstream

BELL-CVE-2025-38302

DEBIAN-CVE-2025-38302

UBUNTU-CVE-2025-38302

USN-7769-1

USN-7769-2

USN-7769-3

USN-7770-1

USN-7771-1

USN-7789-1

USN-7789-2

Published

2025-07-10T07:42:14Z

Modified

2025-10-16T12:57:55.017148Z

Summary

block: don't use submit_bio_noacct_nocheck in blk_zone_wplug_bio_work

Details

In the Linux kernel, the following vulnerability has been resolved:

block: don't use submitbionoacctnocheck in blkzonewplugbio_work

Bios queued up in the zone write plug have already gone through all all preparation in the submit_bio path, including the freeze protection.

Submitting them through submitbionoacct_nocheck duplicates the work and can can cause deadlocks when freezing a queue with pending bio write plugs.

Go straight to ->submitbio or blkmqsubmitbio to bypass the superfluous extra freeze protection and checks.

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

9b1ce7f0c6f82e241196febabddba5fab66c8f05

Fixed

0fccb6773b1f4f992e435582cf8e050de421b678

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

9b1ce7f0c6f82e241196febabddba5fab66c8f05

Fixed

6ffae5d53f704d300cc73b06b4ea99e4507f7cf1

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

9b1ce7f0c6f82e241196febabddba5fab66c8f05

Fixed

cf625013d8741c01407bbb4a60c111b61b9fa69d

Affected versions

v6.*

v6.10

v6.10-rc1

v6.10-rc2

v6.10-rc3

v6.10-rc4

v6.10-rc5

v6.10-rc6

v6.10-rc7

v6.11

v6.11-rc1

v6.11-rc2

v6.11-rc3

v6.11-rc4

v6.11-rc5

v6.11-rc6

v6.11-rc7

v6.12

v6.12-rc1

v6.12-rc2

v6.12-rc3

v6.12-rc4

v6.12-rc5

v6.12-rc6

v6.12-rc7

v6.12.1

v6.12.10

v6.12.11

v6.12.12

v6.12.13

v6.12.14

v6.12.15

v6.12.16

v6.12.17

v6.12.18

v6.12.19

v6.12.2

v6.12.20

v6.12.21

v6.12.22

v6.12.23

v6.12.24

v6.12.25

v6.12.26

v6.12.27

v6.12.28

v6.12.29

v6.12.3

v6.12.30

v6.12.31

v6.12.32

v6.12.33

v6.12.4

v6.12.5

v6.12.6

v6.12.7

v6.12.8

v6.12.9

v6.13

v6.13-rc1

v6.13-rc2

v6.13-rc3

v6.13-rc4

v6.13-rc5

v6.13-rc6

v6.13-rc7

v6.14

v6.14-rc1

v6.14-rc2

v6.14-rc3

v6.14-rc4

v6.14-rc5

v6.14-rc6

v6.14-rc7

v6.15

v6.15-rc1

v6.15-rc2

v6.15-rc3

v6.15-rc4

v6.15-rc5

v6.15-rc6

v6.15-rc7

v6.15.1

v6.15.2

v6.9

v6.9-rc3

v6.9-rc4

v6.9-rc5

v6.9-rc6

v6.9-rc7

Linux / Kernel

Package

Name: Kernel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

6.10.0

Fixed

6.12.34

Type: ECOSYSTEM
Events: Introduced

6.13.0

Fixed

6.15.3