CVE-2025-68310

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.14.0-570.12.1.bringup7.el9.s390x #1

Description The Linux kernel contained a flaw where a deadlock could occur between PCI error recovery and mlx5 crdump operations on the s390 architecture. Specifically, the issue arose when attempting to acquire PCI configuration access locks during error recovery, potentially blocking other tasks. This could manifest as tasks being blocked for extended periods, as observed during error recovery testing with mlx5 core. The deadlock could be triggered by requesting a crdump while PCI error recovery was in progress, or by attempting to collect a crdump using the 'devlink health dump show pci/ reporter fw fatal' command during PCI error recovery. The fix involves acquiring only the device lock instead of the PCI device lock during s390 PCI error recovery, mirroring the approach used in powerpc's EEH and generic PCI AER processing.

Recommendations Update to a version newer than 5.14.0-570.12.1.bringup7.el9.s390x #1.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2025-68310

ECHO-23F8-0180-F34A

MGASA-2026-0017

MGASA-2026-0018

OESA-2026-1303

OESA-2026-1304

OESA-2026-1305

OPENSUSE-SU-2026:20826-1

SUSE-SU-2026:21841-1

SUSE-SU-2026:21845-1

SUSE-SU-2026:21860-1

SUSE-SU-2026:2217-1

SUSE-SU-2026:2238-1

USN-8029-1

USN-8029-2

USN-8029-3

USN-8030-1

USN-8048-1

USN-8095-1

USN-8095-2

USN-8095-3

USN-8095-4

USN-8095-5

USN-8100-1

USN-8125-1

USN-8126-1

USN-8165-1

USN-8261-1

Affected Products

Debian

Linuxmint

Linux Kernel

Ubuntu

Mlx5 Core

CVE-2025-68310

Related Identifiers

Affected Products

References · 1688