Lance Yang

**Name of the Vulnerable Software and Affected Versions** Linux Kernel (affected versions not specified) **Description** The Linux kernel contains a deadlock issue related to lock ordering within hugetlb file folios during page migration. Specifically, a deadlock can occur when one task holds a folio lock and attempts to acquire a read lock on i mmap rwsem, while another task holds a write lock on i mmap rwsem and attempts to acquire the folio lock. This situation arises during the execution of `migrate pages()` and `hugetlbfs fallocate()`. The issue stems from incorrect lock ordering in the migration path, deviating from the documented order in mm/rmap.c. The problem was partially addressed in a previous commit (c0d0381ade79) but was incorrectly reverted for file hugetlb pages by commit 336bf30eb765. The functions involved include `migrate hugetlbs()`, `unmap and move huge page()`, `remove migration ptes()`, ` rmap walk file()`, `i mmap lock read()`, `hugetlbfs punch hole()`, `hugetlbfs zero partial page()`, `filemap lock hugetlb folio()`, and ` filemap get folio()`. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.