CVE-2025-71117

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A flaw exists in the Linux kernel's block layer related to request queue freezing within sysfs store callbacks. Freezing the request queue during these callbacks can lead to a deadlock when combined with the dm-multipath driver and the queue if no path option. This can also slow down system boot times when sysfs attributes are set synchronously. The issue is addressed by removing unnecessary blk mq freeze queue() / blk mq unfreeze queue() calls from the store callbacks. The affected sysfs attributes include io poll delay, io timeout, nomerges, read ahead kb, and rq affinity. An example of a deadlock was observed during testing with the srp/002 test case.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.