CVE-2025-40347 — Multiple Locks of a Critical Resource in Linux
Severity
3.2LOWOSV
No vectorEPSS
0.0%
top 90.17%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedDec 16
Latest updateApr 9
Description
In the Linux kernel, the following vulnerability has been resolved:
net: enetc: fix the deadlock of enetc_mdio_lock
After applying the workaround for err050089, the LS1028A platform
experiences RCU stalls on RT kernel. This issue is caused by the
recursive acquisition of the read lock enetc_mdio_lock. Here list some
of the call stacks identified under the enetc_poll path that may lead to
a deadlock:
enetc_poll
-> enetc_lock_mdio
-> enetc_clean_rx_ring OR napi_complete_done
-> napi_gro_receive…
Affected Packages5 packages
▶CVEListV5linux/linux6d36ecdbc4410e61a0e02adc5d3abeee22a8ffd3 — 2781ca82ce8cad263d80b617addb727e6a84c9e5+6