CVE-2025-38002
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2025-38002
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-38002.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2025-38002
- Downstream
- Published
- 2025-06-06T13:43:41.137Z
- Modified
- 2025-12-02T11:07:45.668252Z
- Summary
- io_uring/fdinfo: grab ctx->uring_lock around io_uring_show_fdinfo()
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
iouring/fdinfo: grab ctx->uringlock around iouringshow_fdinfo()
Not everything requires locking in there, which is why the 'haslock' variable exists. But enough does that it's a bit unwieldy to manage. Wrap the whole thing in a ->uringlock trylock, and just return with no output if we fail to grab it. The existing trylock() will already have greatly diminished utility/output for the failure case.
This fixes an issue with reading the SQE fields, if the ring is being actively resized at the same time.
- Database specific
{ "cna_assigner": "Linux", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/38xxx/CVE-2025-38002.json" }- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/bdb7d2ec2e31c46c45d1f32667dfa8216a72705e
- https://git.kernel.org/stable/c/d871198ee431d90f5308d53998c1ba1d5db5619a
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/38xxx/CVE-2025-38002.json
- https://nvd.nist.gov/vuln/detail/CVE-2025-38002
- https://project-zero.issues.chromium.org/issues/417522668