CVE-2025-39712
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2025-39712
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-39712.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2025-39712
- Downstream
- Published
- 2025-09-05T17:21:19.494Z
- Modified
- 2025-11-27T19:34:47.227768Z
- Summary
- media: mt9m114: Fix deadlock in get_frame_interval/set_frame_interval
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
media: mt9m114: Fix deadlock in getframeinterval/setframeinterval
Getting / Setting the frame interval using the V4L2 subdev pad ops getframeinterval/setframeinterval causes a deadlock, as the subdev state is locked in the [1] but also in the driver itself.
In [2] it's described that the caller is responsible to acquire and release the lock in this case. Therefore, acquiring the lock in the driver is wrong.
Remove the lock acquisitions/releases from mt9m114ifpgetframeinterval() and mt9m114ifpsetframeinterval().
[1] drivers/media/v4l2-core/v4l2-subdev.c - line 1129 [2] Documentation/driver-api/media/v4l2-subdev.rst
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/blob/ee626f5d79d5817bb21d6f048dc0da4c4e383443/cves/2025/39xxx/CVE-2025-39712.json", "cna_assigner": "Linux" }- References
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced24d756e914fc3418bad7897b0657aefa9ef848e8Fixed0d23b548d71e5d76955fdf1d73addd8f6494f602
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced24d756e914fc3418bad7897b0657aefa9ef848e8Fixed41b97490a1656bdc7038d6345a84b08d45deafc6
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced24d756e914fc3418bad7897b0657aefa9ef848e8Fixed298d1471cf83d5a2a05970e41822a2403f451086