CVE-2025-21634 | Linux Kernel up to 6.12.9/6.13-rc6 cpuset get_online_cpus deadlock

Posted by Angelo Barbosa | Jan 19, 2025 | CVE

A vulnerability was found in Linux Kernel up to 6.12.9/6.13-rc6. It has been classified as critical. Affected is the function get_online_cpus of the component cpuset. The manipulation leads to deadlock.

This vulnerability is traded as CVE-2025-21634. Access to the local network is required for this attack. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-21634 | Linux Kernel up to 6.12.9/6.13-rc6 cpuset get_online_cpus deadlock

Related Posts

CVE-2023-52847 | Linux Kernel up to 6.6.1 bttv use after free

CVE-2024-43822 | Linux Kernel up to 6.10.2 PCM6240 devm_kzalloc null pointer dereference (fa6f16eff732/3722873d49a1)

CVE-2024-5754 | zephyrproject-rtos Zephyr up to 3.6 BT cryptographic issues (GHSA-gvv5-66hw-5qrc)

CVE-2024-23478 | SolarWinds Access Rights Manager up to 2023.2.2 Service deserialization