CVE-2025-38404
- Source
- https://cve.org/CVERecord?id=CVE-2025-38404
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-38404.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2025-38404
- Downstream
- Related
- Published
- 2025-07-25T13:09:25.822Z
- Modified
- 2026-03-12T02:15:23.079016Z
- Summary
- usb: typec: displayport: Fix potential deadlock
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
usb: typec: displayport: Fix potential deadlock
The deadlock can occur due to a recursive lock acquisition of
cros_typec_altmode_data::mutex. The call chain is as follows: 1. crostypecaltmodework() acquires the mutex 2. typecaltmodevdm() -> dpaltmodevdm() -> 3. typecaltmodeexit() -> crostypecaltmodeexit() 4. crostypecaltmode_exit() attempts to acquire the mutex againTo prevent this, defer the
typec_altmode_exit()call by scheduling it rather than calling it directly from within the mutex-protected context. - Database specific
{ "cna_assigner": "Linux", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/38xxx/CVE-2025-38404.json" }- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/099cf1fbb8afc3771f408109f62bdec66f85160e
- https://git.kernel.org/stable/c/63cff9f57e86b2dc25d7487ca0118df89a665296
- https://git.kernel.org/stable/c/749d9076735fb497aae60fbea9fff563f9ea3254
- https://git.kernel.org/stable/c/76cf1f33e7319fe74c94ac92f9814094ee8cc84b
- https://git.kernel.org/stable/c/7be0d1ea71f52595499da39cea484a895e8ed042
- https://git.kernel.org/stable/c/80c25d7916a44715338d4f8924c8e52af50d0b9f
- https://git.kernel.org/stable/c/c782f98eef14197affa8a7b91e6981420f109ea9
- https://git.kernel.org/stable/c/eb08fca56f1f39e4038cb9bac9864464b13b00aa
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/38xxx/CVE-2025-38404.json
- https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html
- https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html
- https://nvd.nist.gov/vuln/detail/CVE-2025-38404
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducede0359c66c1beccbe90119a63391678eabda38007Fixed749d9076735fb497aae60fbea9fff563f9ea3254
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducede3fb6c2c3939b4aad203cacdd613a62ce1fd032cFixedeb08fca56f1f39e4038cb9bac9864464b13b00aa
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced56846793f105cf2b39ecbde4f3ae86342091f6fcFixed7be0d1ea71f52595499da39cea484a895e8ed042
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced8e8a69b1f8c59f0505f8a1c0fb77191f27b75011Fixed76cf1f33e7319fe74c94ac92f9814094ee8cc84b
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced8851e40587013db00b71d4aeaae30f5fd59b0eecFixed63cff9f57e86b2dc25d7487ca0118df89a665296
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced10cc2cfd3e5d0e0ec7590c4bee8bcea10e5492c4Fixedc782f98eef14197affa8a7b91e6981420f109ea9
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced8f6a4fa7b663468bb304cb885b93326e025ae005Fixed80c25d7916a44715338d4f8924c8e52af50d0b9f
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedb4b38ffb38c91afd4dc387608db26f6fc34ed40bFixed099cf1fbb8afc3771f408109f62bdec66f85160e