CVE-2025-68807

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A race condition exists between wbt enable default() and IO submission within the Linux kernel's block subsystem. Moving wbt enable default() out of queue freezing can lead to a negative inflight counter (-1) in the writeback path, causing tasks to hang in the wbt wait() function due to an inconsistent counter state. This occurs because the counter can be decremented before proper initialization, as indicated by the rq wait state showing a negative inflight value. The issue manifests in hung task warnings during IO operations, specifically within functions like rq qos wait, wbt wait, rq qos throttle, and blk mq submit bio.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.