PT-2026-2600 · Linux+2 · Linux Kernel+2

Published

2026-01-13

·

Updated

2026-06-16

·

CVE-2025-71079

CVSS v3.1

5.5

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description A deadlock situation can occur between nfc unregister device() and rfkill fop write() functions due to an inversion of lock ordering between device lock and rfkill global mutex. Specifically, Thread A (rfkill fop write) attempts to acquire rfkill global mutex while Thread B (nfc unregister device) attempts to acquire device lock, leading to a classic ABBA deadlock scenario. The issue arises from the order in which locks are acquired during device unregistration and rfkill operations. The fix involves moving rfkill unregister() and rfkill destroy() outside the device lock critical section to prevent the deadlock.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Improper Locking

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-667

Related Identifiers

CVE-2025-71079
ECHO-1E50-9EB1-654C
MGASA-2026-0017
MGASA-2026-0018
OPENSUSE-SU-2026:20287-1
SUSE-SU-2026:0447-1
SUSE-SU-2026:0472-1
SUSE-SU-2026:0587-1
SUSE-SU-2026:20477-1
SUSE-SU-2026:20498-1
SUSE-SU-2026:20555-1
SUSE-SU-2026:20599-1
SUSE-SU-2026:20615-1
SUSE-SU-2026:20845-1
SUSE-SU-2026:20876-1
USN-8096-1
USN-8096-2
USN-8096-3
USN-8096-4
USN-8096-5
USN-8116-1
USN-8141-1
USN-8163-1
USN-8163-2
USN-8177-1
USN-8177-2
USN-8179-1
USN-8179-2
USN-8179-3
USN-8179-4
USN-8183-1
USN-8183-2
USN-8184-1
USN-8185-1
USN-8185-2
USN-8203-1
USN-8204-1
USN-8243-1
USN-8245-1
USN-8257-1
USN-8258-1
USN-8260-1
USN-8261-1
USN-8265-1
USN-8440-1

Affected Products

Linuxmint
Linux Kernel
Ubuntu