CVE-2025-39736
Published: Sep 11, 2025
Modified: May 12, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: mm/kmemleak: avoid deadlock by moving pr_warn() outside kmemleak_lock When netpoll is enabled, calling pr_warn_once() while holding kmemleak_lock in mem_pool_alloc() can cause a deadlock due to lock inversion with the netconsole subsystem. This occurs because pr_warn_once() may trigger netpoll, which eventually leads to __alloc_skb() and back into kmemleak code, attempting to reacquire kmemleak_lock. This is the path for the deadlock. mem_pool_alloc() -> raw_spin_lock_irqsave(&kmemleak_lock, flags); -> pr_warn_once() -> netconsole subsystem -> netpoll -> __alloc_skb -> __create_object -> raw_spin_lock_irqsave(&kmemleak_lock, flags); Fix this by setting a flag and issuing the pr_warn_once() after kmemleak_lock is released.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected c5665868183fec689dbab9fb8505188b2c4f0757 - < c7b6ea0ede687e7460e593c5ea478f50aa41682aaffected c5665868183fec689dbab9fb8505188b2c4f0757 - < 4b0151e1d468eb2667c37b7af99b3c075072d334affected c5665868183fec689dbab9fb8505188b2c4f0757 - < f249d32bb54876b4b6c3ae071af8ddca77af390baffected c5665868183fec689dbab9fb8505188b2c4f0757 - < 62879faa8efe8d8a9c7bf7606ee9c068012d7dacaffected c5665868183fec689dbab9fb8505188b2c4f0757 - < 1da95d3d4b7b1d380ebd87b71a61e7e6aed3265d+4 more versions |
Linux | Linux | affected 5.4unaffected 0 - < 5.4unaffected 5.4.297 - <= 5.4.*unaffected 5.10.241 - <= 5.10.*unaffected 5.15.190 - <= 5.15.*+6 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now