PT-2025-11021 · Linux+7 · Linux Kernel+7
Jill Donahue
·
Published
2025-02-14
·
Updated
2026-04-20
·
CVE-2025-21859
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions:
Linux kernel (affected versions not specified)
Description:
A deadlock issue occurs when using USB MIDI due to a re-entrant call to
f midi transmit(), causing an attempt to acquire a lock twice. This issue is resolved by using queue work() to schedule the inner f midi transmit() function via a high priority work queue from the completion handler.Recommendations:
To resolve the issue, use
queue work() to schedule the inner f midi transmit() function via a high priority work queue from the completion handler, as implemented in the fix.
At the moment, there is no information about a newer version that contains a fix for this vulnerability.Exploit
Improper Locking
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Alt Linux
Astra Linux
Debian
Linuxmint
Linux Kernel
Red Os
Suse
Ubuntu