CVE-2025-21817

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2025-21817

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-21817.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2025-21817

Downstream

ECHO-1db3-6209-85b4

OESA-2025-1285

OESA-2025-1286

UBUNTU-CVE-2025-21817

Published

2025-02-27T20:04:15.988Z

Modified

2025-11-16T13:45:37.673015Z

Summary

block: mark GFP_NOIO around sysfs ->store()

Details

In the Linux kernel, the following vulnerability has been resolved:

block: mark GFP_NOIO around sysfs ->store()

sysfs ->store is called with queue freezed, meantime we have several ->store() callbacks(updatenrrequests, wbt, scheduler) to allocate memory with GFP_KERNEL which may run into direct reclaim code path, then potential deadlock can be caused.

Fix the issue by marking NOIO around sysfs ->store()

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

8985da5481562e96b95e94ed8e5cc9b6565eb82b

Fixed

2566ce907e5d5db8a039647208e029ce559baa31

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

c99f66e4084a62a2cc401c4704a84328aeddc9ec

Fixed

7c0be4ead1f8f5f8be0803f347de0de81e3b8e1c

Affected versions

v6.*

v6.13.2

Linux / Kernel

Package

Name: Kernel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

6.13.2

Fixed

6.13.3