Hannes Reinecke

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 6.6.65 **Description** A vulnerability in the Linux kernel has been resolved, related to the nvme-multipath feature. The issue occurs when a partition scan is performed within the controller's scan work context, which can lead to a deadlock if a path error occurs. To fix this, the partition scan is deferred to a different context that does not block scan work. **Recommendations** For versions prior to 6.6.65, update to version 6.6.65 or later to resolve the issue. As a temporary workaround, consider disabling the nvme-multipath feature until a patch is available. Restrict access to the vulnerable scan work context to minimize the risk of exploitation. Avoid using the `scan work` context in the affected kernel version until the issue is resolved.