PT-2025-27705 · Linux+6 · Linux Kernel+6

Published

2025-05-23

·

Updated

2026-04-20

·

CVE-2025-38119

CVSS v2.0

6.0

Medium

VectorAV:L/AC:H/Au:S/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions: Linux kernel (affected versions not specified)
Description: A hang in the error handler of the Linux kernel's UFS (Universal Flash Storage) driver has been resolved. The issue occurred because ufshcd err handling prepare() calls ufshcd rpm get sync(), which can only succeed if UFSHCD EH IN PROGRESS is not set. To fix this, UFSHCD EH IN PROGRESS is now set after ufshcd rpm get sync() has been called, instead of before. This change prevents a hang that could occur when resuming involves submitting a SCSI command.
Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Improper Resource Release

Weakness Enumeration

CWE-404

Related Identifiers

AZL-64562
BDU:2025-09002
CVE-2025-38119
DLA-4328-1
DSA-5973-1
ECHO-FD45-D45B-352B
MGASA-2025-0218
MGASA-2025-0219
OESA-2025-2268
OESA-2025-2269
OESA-2025-2270
OESA-2025-2272
OESA-2025-2273
OPENSUSE-SU-2025:20081-1
SUSE-SU-2025:03600-1
SUSE-SU-2025:03601-1
SUSE-SU-2025:03633-1
SUSE-SU-2025:03634-1
SUSE-SU-2025:20851-1
SUSE-SU-2025:20861-1
SUSE-SU-2025:20870-1
SUSE-SU-2025:20898-1
SUSE-SU-2025:21074-1
SUSE-SU-2025:21139-1
SUSE-SU-2025:21179-1
SUSE-SU-2025:3725-1
SUSE-SU-2025:3751-1
USN-7769-1
USN-7769-2
USN-7769-3
USN-7770-1
USN-7771-1
USN-7774-1
USN-7774-2
USN-7774-3
USN-7774-4
USN-7774-5
USN-7775-1
USN-7775-2
USN-7775-3
USN-7776-1
USN-7789-1
USN-7789-2
USN-8028-1
USN-8028-2
USN-8028-3
USN-8028-4
USN-8028-5
USN-8028-6
USN-8028-7
USN-8028-8
USN-8031-1
USN-8031-2
USN-8031-3
USN-8052-1
USN-8052-2
USN-8074-1
USN-8074-2
USN-8126-1

Affected Products

Astra Linux
Debian
Linuxmint
Linux Kernel
Red Os
Suse
Ubuntu