CVE-2025-40219
- Source
- https://cve.org/CVERecord?id=CVE-2025-40219
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-40219.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2025-40219
- Downstream
- Related
- Published
- 2025-12-04T14:50:42.996Z
- Modified
- 2026-04-04T11:00:14.165221Z
- Summary
- PCI/IOV: Fix race between SR-IOV enable/disable and hotplug
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
PCI/IOV: Fix race between SR-IOV enable/disable and hotplug
Commit 05703271c3cd ("PCI/IOV: Add PCI rescan-remove locking when enabling/disabling SR-IOV") tried to fix a race between the VF removal inside sriovdelvfs() and concurrent hot unplug by taking the PCI rescan/remove lock in sriovdelvfs(). Similarly the PCI rescan/remove lock was also taken in sriovaddvfs() to protect addition of VFs.
This approach however causes deadlock on trying to remove PFs with SR-IOV enabled because PFs disable SR-IOV during removal and this removal happens under the PCI rescan/remove lock. So the original fix had to be reverted.
Instead of taking the PCI rescan/remove lock in sriovaddvfs() and sriovdelvfs(), fix the race that occurs with SR-IOV enable and disable vs hotplug higher up in the callchain by taking the lock in sriovnumvfsstore() before calling into the driver's sriov_configure() callback.
- Database specific
{ "cna_assigner": "Linux", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/40xxx/CVE-2025-40219.json" }- References
-
- https://git.kernel.org/stable/c/05703271c3cdcc0f2a8cf6ebdc45892b8ca83520
- https://git.kernel.org/stable/c/1047ca2d816994f31e1475e63e0c0b7825599747
- https://git.kernel.org/stable/c/1e8a80290f964bdbad225221c8a1594c7e01c8fd
- https://git.kernel.org/stable/c/36039348bca77828bf06eae41b8f76e38cd15847
- https://git.kernel.org/stable/c/3cddde484471c602bea04e6f384819d336a1ff84
- https://git.kernel.org/stable/c/53154cd40ccf285f1d1c24367824082061d155bd
- https://git.kernel.org/stable/c/5c1cd7d405e94dc6cb320cc0cc092b74895b6ddf
- https://git.kernel.org/stable/c/7c37920c96b85ef4255a7acc795e99e63dd38d59
- https://git.kernel.org/stable/c/97c18f074ff1c12d016a0753072a3afdfa0b9611
- https://git.kernel.org/stable/c/a24219172456f035d886857e265ca24c85b167c8
- https://git.kernel.org/stable/c/a5338e365c4559d7b4d7356116b0eb95b12e08d5
- https://git.kernel.org/stable/c/a645ca21de09e3137cbb224fa6c23cca873a1d01
- https://git.kernel.org/stable/c/bea1d373098b22d7142da48750ce5526096425bc
- https://git.kernel.org/stable/c/d7673ac466eca37ec3e6b7cc9ccdb06de3304e9b
- https://git.kernel.org/stable/c/ee40e5db052d7c6f406fdb95ad639c894c74674c
- https://git.kernel.org/stable/c/f3015627b6e9ddf85cfeaf42405b3c194dde2c36
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/40xxx/CVE-2025-40219.json
- https://nvd.nist.gov/vuln/detail/CVE-2025-40219
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced18f9e9d150fccfa747875df6f0a9f606740762b3Fixed3cddde484471c602bea04e6f384819d336a1ff84Fixedd7673ac466eca37ec3e6b7cc9ccdb06de3304e9bFixed7c37920c96b85ef4255a7acc795e99e63dd38d59Fixed1047ca2d816994f31e1475e63e0c0b7825599747Fixed97c18f074ff1c12d016a0753072a3afdfa0b9611Fixedbea1d373098b22d7142da48750ce5526096425bcFixedf3015627b6e9ddf85cfeaf42405b3c194dde2c36Fixeda5338e365c4559d7b4d7356116b0eb95b12e08d5
Linux / Kernel
Package
- Name
- Kernel
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced5.0.0Fixed5.10.252
- Type
- ECOSYSTEM
- Events
-
Introduced5.11.0Fixed5.15.202
- Type
- ECOSYSTEM
- Events
-
Introduced5.16.0Fixed6.1.165
- Type
- ECOSYSTEM
- Events
-
Introduced6.2.0Fixed6.6.128
- Type
- ECOSYSTEM
- Events
-
Introduced6.7.0Fixed6.12.75
- Type
- ECOSYSTEM
- Events
-
Introduced6.13.0Fixed6.18.16
- Type
- ECOSYSTEM
- Events
-
Introduced6.19.0Fixed6.19.6