CVE-2025-38370 (GCVE-0-2025-38370)
Vulnerability from cvelistv5
Published
2025-07-25 12:53
Modified
2025-07-28 04:20
Severity ?
Summary
In the Linux kernel, the following vulnerability has been resolved: btrfs: fix failure to rebuild free space tree using multiple transactions If we are rebuilding a free space tree, while modifying the free space tree we may need to allocate a new metadata block group. If we end up using multiple transactions for the rebuild, when we call btrfs_end_transaction() we enter btrfs_create_pending_block_groups() which calls add_block_group_free_space() to add items to the free space tree for the block group. Then later during the free space tree rebuild, at btrfs_rebuild_free_space_tree(), we may find such new block groups and call populate_free_space_tree() for them, which fails with -EEXIST because there are already items in the free space tree. Then we abort the transaction with -EEXIST at btrfs_rebuild_free_space_tree(). Notice that we say "may find" the new block groups because a new block group may be inserted in the block groups rbtree, which is being iterated by the rebuild process, before or after the current node where the rebuild process is currently at. Syzbot recently reported such case which produces a trace like the following: ------------[ cut here ]------------ BTRFS: Transaction aborted (error -17) WARNING: CPU: 1 PID: 7626 at fs/btrfs/free-space-tree.c:1341 btrfs_rebuild_free_space_tree+0x470/0x54c fs/btrfs/free-space-tree.c:1341 Modules linked in: CPU: 1 UID: 0 PID: 7626 Comm: syz.2.25 Not tainted 6.15.0-rc7-syzkaller-00085-gd7fa1af5b33e-dirty #0 PREEMPT Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) pc : btrfs_rebuild_free_space_tree+0x470/0x54c fs/btrfs/free-space-tree.c:1341 lr : btrfs_rebuild_free_space_tree+0x470/0x54c fs/btrfs/free-space-tree.c:1341 sp : ffff80009c4f7740 x29: ffff80009c4f77b0 x28: ffff0000d4c3f400 x27: 0000000000000000 x26: dfff800000000000 x25: ffff70001389eee8 x24: 0000000000000003 x23: 1fffe000182b6e7b x22: 0000000000000000 x21: ffff0000c15b73d8 x20: 00000000ffffffef x19: ffff0000c15b7378 x18: 1fffe0003386f276 x17: ffff80008f31e000 x16: ffff80008adbe98c x15: 0000000000000001 x14: 1fffe0001b281550 x13: 0000000000000000 x12: 0000000000000000 x11: ffff60001b281551 x10: 0000000000000003 x9 : 1c8922000a902c00 x8 : 1c8922000a902c00 x7 : ffff800080485878 x6 : 0000000000000000 x5 : 0000000000000001 x4 : 0000000000000001 x3 : ffff80008047843c x2 : 0000000000000001 x1 : ffff80008b3ebc40 x0 : 0000000000000001 Call trace: btrfs_rebuild_free_space_tree+0x470/0x54c fs/btrfs/free-space-tree.c:1341 (P) btrfs_start_pre_rw_mount+0xa78/0xe10 fs/btrfs/disk-io.c:3074 btrfs_remount_rw fs/btrfs/super.c:1319 [inline] btrfs_reconfigure+0x828/0x2418 fs/btrfs/super.c:1543 reconfigure_super+0x1d4/0x6f0 fs/super.c:1083 do_remount fs/namespace.c:3365 [inline] path_mount+0xb34/0xde0 fs/namespace.c:4200 do_mount fs/namespace.c:4221 [inline] __do_sys_mount fs/namespace.c:4432 [inline] __se_sys_mount fs/namespace.c:4409 [inline] __arm64_sys_mount+0x3e8/0x468 fs/namespace.c:4409 __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline] invoke_syscall+0x98/0x2b8 arch/arm64/kernel/syscall.c:49 el0_svc_common+0x130/0x23c arch/arm64/kernel/syscall.c:132 do_el0_svc+0x48/0x58 arch/arm64/kernel/syscall.c:151 el0_svc+0x58/0x17c arch/arm64/kernel/entry-common.c:767 el0t_64_sync_handler+0x78/0x108 arch/arm64/kernel/entry-common.c:786 el0t_64_sync+0x198/0x19c arch/arm64/kernel/entry.S:600 irq event stamp: 330 hardirqs last enabled at (329): [<ffff80008048590c>] raw_spin_rq_unlock_irq kernel/sched/sched.h:1525 [inline] hardirqs last enabled at (329): [<ffff80008048590c>] finish_lock_switch+0xb0/0x1c0 kernel/sched/core.c:5130 hardirqs last disabled at (330): [<ffff80008adb9e60>] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:511 softirqs last enabled at (10): [<ffff8000801fbf10>] local_bh_enable+0 ---truncated---
References
Impacted products
Vendor Product Version
Linux Linux Version: 882af9f13e830c0a4ef696bb72cd5998a5067a93
Version: 882af9f13e830c0a4ef696bb72cd5998a5067a93
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
  "containers": {
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "fs/btrfs/block-group.h",
            "fs/btrfs/free-space-tree.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "88fdd4899ea9bfe6cf943f099fcf8ad5df153782",
              "status": "affected",
              "version": "882af9f13e830c0a4ef696bb72cd5998a5067a93",
              "versionType": "git"
            },
            {
              "lessThan": "1e6ed33cabba8f06f532f2e5851a102602823734",
              "status": "affected",
              "version": "882af9f13e830c0a4ef696bb72cd5998a5067a93",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "fs/btrfs/block-group.h",
            "fs/btrfs/free-space-tree.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "6.14"
            },
            {
              "lessThan": "6.14",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.15.*",
              "status": "unaffected",
              "version": "6.15.6",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.16",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.15.6",
                  "versionStartIncluding": "6.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.16",
                  "versionStartIncluding": "6.14",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix failure to rebuild free space tree using multiple transactions\n\nIf we are rebuilding a free space tree, while modifying the free space\ntree we may need to allocate a new metadata block group.\nIf we end up using multiple transactions for the rebuild, when we call\nbtrfs_end_transaction() we enter btrfs_create_pending_block_groups()\nwhich calls add_block_group_free_space() to add items to the free space\ntree for the block group.\n\nThen later during the free space tree rebuild, at\nbtrfs_rebuild_free_space_tree(), we may find such new block groups\nand call populate_free_space_tree() for them, which fails with -EEXIST\nbecause there are already items in the free space tree. Then we abort the\ntransaction with -EEXIST at btrfs_rebuild_free_space_tree().\nNotice that we say \"may find\" the new block groups because a new block\ngroup may be inserted in the block groups rbtree, which is being iterated\nby the rebuild process, before or after the current node where the rebuild\nprocess is currently at.\n\nSyzbot recently reported such case which produces a trace like the\nfollowing:\n\n  ------------[ cut here ]------------\n  BTRFS: Transaction aborted (error -17)\n  WARNING: CPU: 1 PID: 7626 at fs/btrfs/free-space-tree.c:1341 btrfs_rebuild_free_space_tree+0x470/0x54c fs/btrfs/free-space-tree.c:1341\n  Modules linked in:\n  CPU: 1 UID: 0 PID: 7626 Comm: syz.2.25 Not tainted 6.15.0-rc7-syzkaller-00085-gd7fa1af5b33e-dirty #0 PREEMPT\n  Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025\n  pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n  pc : btrfs_rebuild_free_space_tree+0x470/0x54c fs/btrfs/free-space-tree.c:1341\n  lr : btrfs_rebuild_free_space_tree+0x470/0x54c fs/btrfs/free-space-tree.c:1341\n  sp : ffff80009c4f7740\n  x29: ffff80009c4f77b0 x28: ffff0000d4c3f400 x27: 0000000000000000\n  x26: dfff800000000000 x25: ffff70001389eee8 x24: 0000000000000003\n  x23: 1fffe000182b6e7b x22: 0000000000000000 x21: ffff0000c15b73d8\n  x20: 00000000ffffffef x19: ffff0000c15b7378 x18: 1fffe0003386f276\n  x17: ffff80008f31e000 x16: ffff80008adbe98c x15: 0000000000000001\n  x14: 1fffe0001b281550 x13: 0000000000000000 x12: 0000000000000000\n  x11: ffff60001b281551 x10: 0000000000000003 x9 : 1c8922000a902c00\n  x8 : 1c8922000a902c00 x7 : ffff800080485878 x6 : 0000000000000000\n  x5 : 0000000000000001 x4 : 0000000000000001 x3 : ffff80008047843c\n  x2 : 0000000000000001 x1 : ffff80008b3ebc40 x0 : 0000000000000001\n  Call trace:\n   btrfs_rebuild_free_space_tree+0x470/0x54c fs/btrfs/free-space-tree.c:1341 (P)\n   btrfs_start_pre_rw_mount+0xa78/0xe10 fs/btrfs/disk-io.c:3074\n   btrfs_remount_rw fs/btrfs/super.c:1319 [inline]\n   btrfs_reconfigure+0x828/0x2418 fs/btrfs/super.c:1543\n   reconfigure_super+0x1d4/0x6f0 fs/super.c:1083\n   do_remount fs/namespace.c:3365 [inline]\n   path_mount+0xb34/0xde0 fs/namespace.c:4200\n   do_mount fs/namespace.c:4221 [inline]\n   __do_sys_mount fs/namespace.c:4432 [inline]\n   __se_sys_mount fs/namespace.c:4409 [inline]\n   __arm64_sys_mount+0x3e8/0x468 fs/namespace.c:4409\n   __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline]\n   invoke_syscall+0x98/0x2b8 arch/arm64/kernel/syscall.c:49\n   el0_svc_common+0x130/0x23c arch/arm64/kernel/syscall.c:132\n   do_el0_svc+0x48/0x58 arch/arm64/kernel/syscall.c:151\n   el0_svc+0x58/0x17c arch/arm64/kernel/entry-common.c:767\n   el0t_64_sync_handler+0x78/0x108 arch/arm64/kernel/entry-common.c:786\n   el0t_64_sync+0x198/0x19c arch/arm64/kernel/entry.S:600\n  irq event stamp: 330\n  hardirqs last  enabled at (329): [\u003cffff80008048590c\u003e] raw_spin_rq_unlock_irq kernel/sched/sched.h:1525 [inline]\n  hardirqs last  enabled at (329): [\u003cffff80008048590c\u003e] finish_lock_switch+0xb0/0x1c0 kernel/sched/core.c:5130\n  hardirqs last disabled at (330): [\u003cffff80008adb9e60\u003e] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:511\n  softirqs last  enabled at (10): [\u003cffff8000801fbf10\u003e] local_bh_enable+0\n---truncated---"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-07-28T04:20:14.039Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/88fdd4899ea9bfe6cf943f099fcf8ad5df153782"
        },
        {
          "url": "https://git.kernel.org/stable/c/1e6ed33cabba8f06f532f2e5851a102602823734"
        }
      ],
      "title": "btrfs: fix failure to rebuild free space tree using multiple transactions",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2025-38370",
    "datePublished": "2025-07-25T12:53:13.515Z",
    "dateReserved": "2025-04-16T04:51:24.009Z",
    "dateUpdated": "2025-07-28T04:20:14.039Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "nvd": "{\"cve\":{\"id\":\"CVE-2025-38370\",\"sourceIdentifier\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"published\":\"2025-07-25T13:15:25.933\",\"lastModified\":\"2025-07-25T15:29:19.837\",\"vulnStatus\":\"Awaiting Analysis\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"In the Linux kernel, the following vulnerability has been resolved:\\n\\nbtrfs: fix failure to rebuild free space tree using multiple transactions\\n\\nIf we are rebuilding a free space tree, while modifying the free space\\ntree we may need to allocate a new metadata block group.\\nIf we end up using multiple transactions for the rebuild, when we call\\nbtrfs_end_transaction() we enter btrfs_create_pending_block_groups()\\nwhich calls add_block_group_free_space() to add items to the free space\\ntree for the block group.\\n\\nThen later during the free space tree rebuild, at\\nbtrfs_rebuild_free_space_tree(), we may find such new block groups\\nand call populate_free_space_tree() for them, which fails with -EEXIST\\nbecause there are already items in the free space tree. Then we abort the\\ntransaction with -EEXIST at btrfs_rebuild_free_space_tree().\\nNotice that we say \\\"may find\\\" the new block groups because a new block\\ngroup may be inserted in the block groups rbtree, which is being iterated\\nby the rebuild process, before or after the current node where the rebuild\\nprocess is currently at.\\n\\nSyzbot recently reported such case which produces a trace like the\\nfollowing:\\n\\n  ------------[ cut here ]------------\\n  BTRFS: Transaction aborted (error -17)\\n  WARNING: CPU: 1 PID: 7626 at fs/btrfs/free-space-tree.c:1341 btrfs_rebuild_free_space_tree+0x470/0x54c fs/btrfs/free-space-tree.c:1341\\n  Modules linked in:\\n  CPU: 1 UID: 0 PID: 7626 Comm: syz.2.25 Not tainted 6.15.0-rc7-syzkaller-00085-gd7fa1af5b33e-dirty #0 PREEMPT\\n  Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025\\n  pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\\n  pc : btrfs_rebuild_free_space_tree+0x470/0x54c fs/btrfs/free-space-tree.c:1341\\n  lr : btrfs_rebuild_free_space_tree+0x470/0x54c fs/btrfs/free-space-tree.c:1341\\n  sp : ffff80009c4f7740\\n  x29: ffff80009c4f77b0 x28: ffff0000d4c3f400 x27: 0000000000000000\\n  x26: dfff800000000000 x25: ffff70001389eee8 x24: 0000000000000003\\n  x23: 1fffe000182b6e7b x22: 0000000000000000 x21: ffff0000c15b73d8\\n  x20: 00000000ffffffef x19: ffff0000c15b7378 x18: 1fffe0003386f276\\n  x17: ffff80008f31e000 x16: ffff80008adbe98c x15: 0000000000000001\\n  x14: 1fffe0001b281550 x13: 0000000000000000 x12: 0000000000000000\\n  x11: ffff60001b281551 x10: 0000000000000003 x9 : 1c8922000a902c00\\n  x8 : 1c8922000a902c00 x7 : ffff800080485878 x6 : 0000000000000000\\n  x5 : 0000000000000001 x4 : 0000000000000001 x3 : ffff80008047843c\\n  x2 : 0000000000000001 x1 : ffff80008b3ebc40 x0 : 0000000000000001\\n  Call trace:\\n   btrfs_rebuild_free_space_tree+0x470/0x54c fs/btrfs/free-space-tree.c:1341 (P)\\n   btrfs_start_pre_rw_mount+0xa78/0xe10 fs/btrfs/disk-io.c:3074\\n   btrfs_remount_rw fs/btrfs/super.c:1319 [inline]\\n   btrfs_reconfigure+0x828/0x2418 fs/btrfs/super.c:1543\\n   reconfigure_super+0x1d4/0x6f0 fs/super.c:1083\\n   do_remount fs/namespace.c:3365 [inline]\\n   path_mount+0xb34/0xde0 fs/namespace.c:4200\\n   do_mount fs/namespace.c:4221 [inline]\\n   __do_sys_mount fs/namespace.c:4432 [inline]\\n   __se_sys_mount fs/namespace.c:4409 [inline]\\n   __arm64_sys_mount+0x3e8/0x468 fs/namespace.c:4409\\n   __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline]\\n   invoke_syscall+0x98/0x2b8 arch/arm64/kernel/syscall.c:49\\n   el0_svc_common+0x130/0x23c arch/arm64/kernel/syscall.c:132\\n   do_el0_svc+0x48/0x58 arch/arm64/kernel/syscall.c:151\\n   el0_svc+0x58/0x17c arch/arm64/kernel/entry-common.c:767\\n   el0t_64_sync_handler+0x78/0x108 arch/arm64/kernel/entry-common.c:786\\n   el0t_64_sync+0x198/0x19c arch/arm64/kernel/entry.S:600\\n  irq event stamp: 330\\n  hardirqs last  enabled at (329): [\u003cffff80008048590c\u003e] raw_spin_rq_unlock_irq kernel/sched/sched.h:1525 [inline]\\n  hardirqs last  enabled at (329): [\u003cffff80008048590c\u003e] finish_lock_switch+0xb0/0x1c0 kernel/sched/core.c:5130\\n  hardirqs last disabled at (330): [\u003cffff80008adb9e60\u003e] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:511\\n  softirqs last  enabled at (10): [\u003cffff8000801fbf10\u003e] local_bh_enable+0\\n---truncated---\"},{\"lang\":\"es\",\"value\":\"En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: btrfs: se corrige el error al reconstruir el \u00e1rbol de espacio libre utilizando m\u00faltiples transacciones Si estamos reconstruyendo un \u00e1rbol de espacio libre, mientras modificamos el \u00e1rbol de espacio libre, es posible que necesitemos asignar un nuevo grupo de bloques de metadatos. Si terminamos utilizando m\u00faltiples transacciones para la reconstrucci\u00f3n, cuando llamamos a btrfs_end_transaction() ingresamos btrfs_create_pending_block_groups() que llama a add_block_group_free_space() para agregar elementos al \u00e1rbol de espacio libre para el grupo de bloques. Luego, m\u00e1s tarde durante la reconstrucci\u00f3n del \u00e1rbol de espacio libre, en btrfs_rebuild_free_space_tree(), podemos encontrar dichos nuevos grupos de bloques y llamar a populate_free_space_tree() para ellos, lo que falla con -EEXIST porque ya hay elementos en el \u00e1rbol de espacio libre. Luego abortamos la transacci\u00f3n con -EEXIST en btrfs_rebuild_free_space_tree(). Tenga en cuenta que decimos \\\"puede encontrar\\\" los nuevos grupos de bloques porque se puede insertar un nuevo grupo de bloques en el \u00e1rbol de grupos de bloques, que est\u00e1 siendo iterado por el proceso de reconstrucci\u00f3n, antes o despu\u00e9s del nodo actual en el que se encuentra actualmente el proceso de reconstrucci\u00f3n. Syzbot inform\u00f3 recientemente de un caso similar que produce un seguimiento como el siguiente: ------------[ cut here ]------------ BTRFS: Transaction aborted (error -17) WARNING: CPU: 1 PID: 7626 at fs/btrfs/free-space-tree.c:1341 btrfs_rebuild_free_space_tree+0x470/0x54c fs/btrfs/free-space-tree.c:1341 Modules linked in: CPU: 1 UID: 0 PID: 7626 Comm: syz.2.25 Not tainted 6.15.0-rc7-syzkaller-00085-gd7fa1af5b33e-dirty #0 PREEMPT Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) pc : btrfs_rebuild_free_space_tree+0x470/0x54c fs/btrfs/free-space-tree.c:1341 lr : btrfs_rebuild_free_space_tree+0x470/0x54c fs/btrfs/free-space-tree.c:1341 sp : ffff80009c4f7740 x29: ffff80009c4f77b0 x28: ffff0000d4c3f400 x27: 0000000000000000 x26: dfff800000000000 x25: ffff70001389eee8 x24: 0000000000000003 x23: 1fffe000182b6e7b x22: 0000000000000000 x21: ffff0000c15b73d8 x20: 00000000ffffffef x19: ffff0000c15b7378 x18: 1fffe0003386f276 x17: ffff80008f31e000 x16: ffff80008adbe98c x15: 0000000000000001 x14: 1fffe0001b281550 x13: 0000000000000000 x12: 0000000000000000 x11: ffff60001b281551 x10: 0000000000000003 x9 : 1c8922000a902c00 x8 : 1c8922000a902c00 x7 : ffff800080485878 x6 : 0000000000000000 x5 : 0000000000000001 x4 : 0000000000000001 x3 : ffff80008047843c x2 : 0000000000000001 x1 : ffff80008b3ebc40 x0 : 0000000000000001 Call trace: btrfs_rebuild_free_space_tree+0x470/0x54c fs/btrfs/free-space-tree.c:1341 (P) btrfs_start_pre_rw_mount+0xa78/0xe10 fs/btrfs/disk-io.c:3074 btrfs_remount_rw fs/btrfs/super.c:1319 [inline] btrfs_reconfigure+0x828/0x2418 fs/btrfs/super.c:1543 reconfigure_super+0x1d4/0x6f0 fs/super.c:1083 do_remount fs/namespace.c:3365 [inline] path_mount+0xb34/0xde0 fs/namespace.c:4200 do_mount fs/namespace.c:4221 [inline] __do_sys_mount fs/namespace.c:4432 [inline] __se_sys_mount fs/namespace.c:4409 [inline] __arm64_sys_mount+0x3e8/0x468 fs/namespace.c:4409 __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline] invoke_syscall+0x98/0x2b8 arch/arm64/kernel/syscall.c:49 el0_svc_common+0x130/0x23c arch/arm64/kernel/syscall.c:132 do_el0_svc+0x48/0x58 arch/arm64/kernel/syscall.c:151 el0_svc+0x58/0x17c arch/arm64/kernel/entry-common.c:767 el0t_64_sync_handler+0x78/0x108 arch/arm64/kernel/entry-common.c:786 el0t_64_sync+0x198/0x19c arch/arm64/kernel/entry.S:600 irq event stamp: 330 hardirqs last enabled at (329): [] raw_spin_rq_unlock_irq kernel/sched/sched.h:1525 [inline] hardirqs last enabled at (329): [] finish_lock_switch+0xb0/0x1c0 kernel/sched/core.c:5130 hardirqs last disabled at (330): [] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:511 ---truncado---\"}],\"metrics\":{},\"references\":[{\"url\":\"https://git.kernel.org/stable/c/1e6ed33cabba8f06f532f2e5851a102602823734\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"},{\"url\":\"https://git.kernel.org/stable/c/88fdd4899ea9bfe6cf943f099fcf8ad5df153782\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"}]}}"
  }
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
  • Confirmed: The vulnerability is confirmed from an analyst perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
  • Patched: This vulnerability was successfully patched by the user reporting the sighting.
  • Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
  • Not confirmed: The user expresses doubt about the veracity of the vulnerability.
  • Not patched: This vulnerability was not successfully patched by the user reporting the sighting.