AZL-67407

See a problem?

Import Source

https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-67407.json

JSON Data

https://api.test.osv.dev/v1/vulns/AZL-67407

Upstream

CVE-2025-39832

Published

2025-09-16T14:15:51Z

Modified

2026-04-01T05:21:12.178259Z

Summary

CVE-2025-39832 affecting package kernel for versions less than 6.6.104.2-1

Details

In the Linux kernel, the following vulnerability has been resolved:

net/mlx5: Fix lockdep assertion on sync reset unload event

Fix lockdep assertion triggered during sync reset unload event. When the sync reset flow is initiated using the devlink reload fw_activate option, the PF already holds the devlink lock while handling unload event. In this case, delegate sync reset unload event handling back to the devlink callback process to avoid double-locking and resolve the lockdep warning.

Kernel log: WARNING: CPU: 9 PID: 1578 at devlassertlocked+0x31/0x40 [...] Call Trace: <TASK> mlx5unloadonedevllocked+0x2c/0xc0 [mlx5core] mlx5syncresetunloadevent+0xaf/0x2f0 [mlx5core] processonework+0x222/0x640 worker_thread+0x199/0x350 kthread+0x10b/0x230 ? __pfxworkerthread+0x10/0x10 ? __pfxkthread+0x10/0x10 retfrom_fork+0x8e/0x100 ? __pfxkthread+0x10/0x10 retfromforkasm+0x1a/0x30 </TASK>

References

https://nvd.nist.gov/vuln/detail/CVE-2025-39832

Affected packages

Azure Linux:3 / kernel

Package

Name: kernel
Purl: pkg:rpm/azure-linux/kernel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

6.6.104.2-1

Database specific

source

"https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-67407.json"