CVE-2025-40146
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2025-40146
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-40146.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2025-40146
- Downstream
- Published
- 2025-11-12T10:23:26.287Z
- Modified
- 2025-12-01T20:43:08.653955Z
- Summary
- blk-mq: fix potential deadlock while nr_requests grown
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
blk-mq: fix potential deadlock while nr_requests grown
Allocate and free sched_tags while queue is freezed can deadlock[1], this is a long term problem, hence allocate memory before freezing queue and free memory after queue is unfreezed.
[1] https://lore.kernel.org/all/0659ea8d-a463-47c8-9180-43c719e106eb@linux.ibm.com/
- References
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducede3a2b3f931f59d5284abd13faf8bded726884ffdFixed8d26acf8477174d8ef690eb6affe13a630f586ae
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducede3a2b3f931f59d5284abd13faf8bded726884ffdFixedb86433721f46d934940528f28d49c1dedb690df1
Affected versions
v3.*
v3.15
v3.15-rc2
v3.15-rc3
v3.15-rc4
v3.15-rc5
v3.15-rc6
v3.15-rc7
v3.15-rc8
v3.16
v3.16-rc1
v3.16-rc2
v3.16-rc3
v3.16-rc4
v3.16-rc5
v3.16-rc6
v3.16-rc7
v3.17
v3.17-rc1
v3.17-rc2
v3.17-rc3
v3.17-rc4
v3.17-rc5
v3.17-rc6
v3.17-rc7
v3.18
v3.18-rc1
v3.18-rc2
v3.18-rc3
v3.18-rc4
v3.18-rc5
v3.18-rc6
v3.18-rc7
v3.19
v3.19-rc1
v3.19-rc2
v3.19-rc3
v3.19-rc4
v3.19-rc5
v3.19-rc6
v3.19-rc7
v4.*
v4.0
v4.0-rc1
v4.0-rc2
v4.0-rc3
v4.0-rc4
v4.0-rc5
v4.0-rc6
v4.0-rc7
v4.1
v4.1-rc1
v4.1-rc2
v4.1-rc3
v4.1-rc4
v4.1-rc5
v4.1-rc6
v4.1-rc7
v4.1-rc8
v4.10
v4.10-rc1
v4.10-rc2
v4.10-rc3
v4.10-rc4
v4.10-rc5
v4.10-rc6
v4.10-rc7
v4.10-rc8
v4.11
v4.11-rc1
v4.11-rc2
v4.11-rc3
v4.11-rc4
v4.11-rc5
v4.11-rc6
v4.11-rc7
v4.11-rc8
v4.12
v4.12-rc1
v4.12-rc2
v4.12-rc3
v4.12-rc4
v4.12-rc5
v4.12-rc6
v4.12-rc7
v4.13
v4.13-rc1
v4.13-rc2
v4.13-rc3
v4.13-rc4
v4.13-rc5
v4.13-rc6
v4.13-rc7
v4.14
v4.14-rc1
v4.14-rc2
v4.14-rc3
v4.14-rc4
v4.14-rc5
v4.14-rc6
v4.14-rc7
v4.14-rc8
v4.15
v4.15-rc1
v4.15-rc2
v4.15-rc3
v4.15-rc4
v4.15-rc5
v4.15-rc6
v4.15-rc7
v4.15-rc8
v4.15-rc9
v4.16
v4.16-rc1
v4.16-rc2
v4.16-rc3
v4.16-rc4
v4.16-rc5
v4.16-rc6
v4.16-rc7
v4.17
v4.17-rc1
v4.17-rc2
v4.17-rc3
v4.17-rc4
v4.17-rc5
v4.17-rc6
v4.17-rc7
v4.18
v4.18-rc1
v4.18-rc2
v4.18-rc3
v4.18-rc4
v4.18-rc5
v4.18-rc6
v4.18-rc7
v4.18-rc8
v4.19
v4.19-rc1
v4.19-rc2
v4.19-rc3
v4.19-rc4
v4.19-rc5
v4.19-rc6
v4.19-rc7
v4.19-rc8
v4.2
v4.2-rc1
v4.2-rc2
v4.2-rc3
v4.2-rc4
v4.2-rc5
v4.2-rc6
v4.2-rc7
v4.2-rc8
v4.20
v4.20-rc1
v4.20-rc2
v4.20-rc3
v4.20-rc4
v4.20-rc5
v4.20-rc6
v4.20-rc7
v4.3
v4.3-rc1
v4.3-rc2
v4.3-rc3
v4.3-rc4
v4.3-rc5
v4.3-rc6
v4.3-rc7
v4.4
v4.4-rc1
v4.4-rc2
v4.4-rc3
v4.4-rc4
v4.4-rc5
v4.4-rc6
v4.4-rc7
v4.4-rc8
v4.5
v4.5-rc1
v4.5-rc2
v4.5-rc3
v4.5-rc4
v4.5-rc5
v4.5-rc6
v4.5-rc7
v4.6
v4.6-rc1
v4.6-rc2
v4.6-rc3
v4.6-rc4
v4.6-rc5
v4.6-rc6
v4.6-rc7
v4.7
v4.7-rc1
v4.7-rc2
v4.7-rc3
v4.7-rc4
v4.7-rc5
v4.7-rc6
v4.7-rc7
v4.8
v4.8-rc1
v4.8-rc2
v4.8-rc3
v4.8-rc4
v4.8-rc5
v4.8-rc6
v4.8-rc7
v4.8-rc8
v4.9
v4.9-rc1
v4.9-rc2
v4.9-rc3
v4.9-rc4
v4.9-rc5
v4.9-rc6
v4.9-rc7
v4.9-rc8
v5.*
v5.0
v5.0-rc1
v5.0-rc2
v5.0-rc3
v5.0-rc4
v5.0-rc5
v5.0-rc6
v5.0-rc7
v5.0-rc8
v5.1
v5.1-rc1
v5.1-rc2
v5.1-rc3
v5.1-rc4
v5.1-rc5
v5.1-rc6
v5.1-rc7
v5.10
v5.10-rc1
v5.10-rc2
v5.10-rc3
v5.10-rc4
v5.10-rc5
v5.10-rc6
v5.10-rc7
v5.11
v5.11-rc1
v5.11-rc2
v5.11-rc3
v5.11-rc4
v5.11-rc5
v5.11-rc6
v5.11-rc7
v5.12
v5.12-rc1
v5.12-rc1-dontuse
v5.12-rc2
v5.12-rc3
v5.12-rc4
v5.12-rc5
v5.12-rc6
v5.12-rc7
v5.12-rc8
v5.13
v5.13-rc1
v5.13-rc2
v5.13-rc3
v5.13-rc4
v5.13-rc5
v5.13-rc6
v5.13-rc7
v5.14
v5.14-rc1
v5.14-rc2
v5.14-rc3
v5.14-rc4
v5.14-rc5
v5.14-rc6
v5.14-rc7
v5.15
v5.15-rc1
v5.15-rc2
v5.15-rc3
v5.15-rc4
v5.15-rc5
v5.15-rc6
v5.15-rc7
v5.16
v5.16-rc1
v5.16-rc2
v5.16-rc3
v5.16-rc4
v5.16-rc5
v5.16-rc6
v5.16-rc7
v5.16-rc8
v5.17
v5.17-rc1
v5.17-rc2
v5.17-rc3
v5.17-rc4
v5.17-rc5
v5.17-rc6
v5.17-rc7
v5.17-rc8
v5.18
v5.18-rc1
v5.18-rc2
v5.18-rc3
v5.18-rc4
v5.18-rc5
v5.18-rc6
v5.18-rc7
v5.19
v5.19-rc1
v5.19-rc2
v5.19-rc3
v5.19-rc4
v5.19-rc5
v5.19-rc6
v5.19-rc7
v5.19-rc8
v5.2
v5.2-rc1
v5.2-rc2
v5.2-rc3
v5.2-rc4
v5.2-rc5
v5.2-rc6
v5.2-rc7
v5.3
v5.3-rc1
v5.3-rc2
v5.3-rc3
v5.3-rc4
v5.3-rc5
v5.3-rc6
v5.3-rc7
v5.3-rc8
v5.4
v5.4-rc1
v5.4-rc2
v5.4-rc3
v5.4-rc4
v5.4-rc5
v5.4-rc6
v5.4-rc7
v5.4-rc8
v5.5
v5.5-rc1
v5.5-rc2
v5.5-rc3
v5.5-rc4
v5.5-rc5
v5.5-rc6
v5.5-rc7
v5.6
v5.6-rc1
v5.6-rc2
v5.6-rc3
v5.6-rc4
v5.6-rc5
v5.6-rc6
v5.6-rc7
v5.7
v5.7-rc1
v5.7-rc2
v5.7-rc3
v5.7-rc4
v5.7-rc5
v5.7-rc6
v5.7-rc7
v5.8
v5.8-rc1
v5.8-rc2
v5.8-rc3
v5.8-rc4
v5.8-rc5
v5.8-rc6
v5.8-rc7
v5.9
v5.9-rc1
v5.9-rc2
v5.9-rc3
v5.9-rc4
v5.9-rc5
v5.9-rc6
v5.9-rc7
v5.9-rc8
v6.*
v6.0
v6.0-rc1
v6.0-rc2
v6.0-rc3
v6.0-rc4
v6.0-rc5
v6.0-rc6
v6.0-rc7
v6.1
v6.1-rc1
v6.1-rc2
v6.1-rc3
v6.1-rc4
v6.1-rc5
v6.1-rc6
v6.1-rc7
v6.1-rc8
v6.10
v6.10-rc1
v6.10-rc2
v6.10-rc3
v6.10-rc4
v6.10-rc5
v6.10-rc6
v6.10-rc7
v6.11
v6.11-rc1
v6.11-rc2
v6.11-rc3
v6.11-rc4
v6.11-rc5
v6.11-rc6
v6.11-rc7
v6.12
v6.12-rc1
v6.12-rc2
v6.12-rc3
v6.12-rc4
v6.12-rc5
v6.12-rc6
v6.12-rc7
v6.13
v6.13-rc1
v6.13-rc2
v6.13-rc3
v6.13-rc4
v6.13-rc5
v6.13-rc6
v6.13-rc7
v6.14
v6.14-rc1
v6.14-rc2
v6.14-rc3
v6.14-rc4
v6.14-rc5
v6.14-rc6
v6.14-rc7
v6.15
v6.15-rc1
v6.15-rc2
v6.15-rc3
v6.15-rc4
v6.15-rc5
v6.15-rc6
v6.15-rc7
v6.16
v6.16-rc1
v6.16-rc2
v6.16-rc3
v6.16-rc4
v6.16-rc5
v6.16-rc6
v6.16-rc7
v6.17
v6.17-rc1
v6.17-rc2
v6.17-rc3
v6.17-rc4
v6.17-rc5
v6.17-rc6
v6.17-rc7
v6.17.1
v6.17.2
v6.2
v6.2-rc1
v6.2-rc2
v6.2-rc3
v6.2-rc4
v6.2-rc5
v6.2-rc6
v6.2-rc7
v6.2-rc8
v6.3
v6.3-rc1
v6.3-rc2
v6.3-rc3
v6.3-rc4
v6.3-rc5
v6.3-rc6
v6.3-rc7
v6.4
v6.4-rc1
v6.4-rc2
v6.4-rc3
v6.4-rc4
v6.4-rc5
v6.4-rc6
v6.4-rc7
v6.5
v6.5-rc1
v6.5-rc2
v6.5-rc3
v6.5-rc4
v6.5-rc5
v6.5-rc6
v6.5-rc7
v6.6
v6.6-rc1
v6.6-rc2
v6.6-rc3
v6.6-rc4
v6.6-rc5
v6.6-rc6
v6.6-rc7
v6.7
v6.7-rc1
v6.7-rc2
v6.7-rc3
v6.7-rc4
v6.7-rc5
v6.7-rc6
v6.7-rc7
v6.7-rc8
v6.8
v6.8-rc1
v6.8-rc2
v6.8-rc3
v6.8-rc4
v6.8-rc5
v6.8-rc6
v6.8-rc7
v6.9
v6.9-rc1
v6.9-rc2
v6.9-rc3
v6.9-rc4
v6.9-rc5
v6.9-rc6
v6.9-rc7
Database specific
vanir_signatures
[
{
"target": {
"file": "block/blk-mq.c"
},
"digest": {
"line_hashes": [
"56404836422667400842316638897653249098",
"275812349043497290434203052695945401550",
"251437570331911498836837427898292300569",
"286368657476183938360433628777636592522",
"241309682571501982127488294432103787277",
"279871953621743351894845518094626758703",
"202249475495064713363396903777433753467",
"62486205930838208987815367192566372706",
"249069051775417860536413532106624815219",
"141384797805123136592008219486963099603",
"1035416973884399053852503648466364825",
"263119050977520076478629111850442306230",
"217534778677245813647246371055061838640",
"22670113452166312003218108838436654443",
"6397675645214600103930273455629117667",
"171137460670624178233052912562789776757",
"62172448730502771704880397212301893307",
"71945123280651694304398612103748220537",
"330755387132998075429737473634066570136",
"192847769998881670131497932273215554100",
"240922292768304088891888125317186773957",
"105402916153602232345871530347878946042",
"303591572476640023480163528904602206143",
"258756473226306376839464594797756047054",
"66164276722718577154561039347567246639",
"62237009947414696719805035181656993007"
],
"threshold": 0.9
},
"signature_version": "v1",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@8d26acf8477174d8ef690eb6affe13a630f586ae",
"deprecated": false,
"id": "CVE-2025-40146-2afb1b66",
"signature_type": "Line"
},
{
"target": {
"file": "block/blk-mq.c"
},
"digest": {
"line_hashes": [
"56404836422667400842316638897653249098",
"275812349043497290434203052695945401550",
"251437570331911498836837427898292300569",
"286368657476183938360433628777636592522",
"241309682571501982127488294432103787277",
"279871953621743351894845518094626758703",
"202249475495064713363396903777433753467",
"62486205930838208987815367192566372706",
"249069051775417860536413532106624815219",
"141384797805123136592008219486963099603",
"1035416973884399053852503648466364825",
"263119050977520076478629111850442306230",
"217534778677245813647246371055061838640",
"22670113452166312003218108838436654443",
"6397675645214600103930273455629117667",
"171137460670624178233052912562789776757",
"62172448730502771704880397212301893307",
"71945123280651694304398612103748220537",
"330755387132998075429737473634066570136",
"192847769998881670131497932273215554100",
"240922292768304088891888125317186773957",
"105402916153602232345871530347878946042",
"303591572476640023480163528904602206143",
"258756473226306376839464594797756047054",
"66164276722718577154561039347567246639",
"62237009947414696719805035181656993007"
],
"threshold": 0.9
},
"signature_version": "v1",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@b86433721f46d934940528f28d49c1dedb690df1",
"deprecated": false,
"id": "CVE-2025-40146-524cdd67",
"signature_type": "Line"
},
{
"target": {
"file": "block/blk-sysfs.c"
},
"digest": {
"line_hashes": [
"75722216342391204771271055053948292317",
"115758507122549832030167547794179916353",
"212012508669856831758711723215761146360",
"259976876169430708687774899495038937855",
"45591744663417789132953482815916318660",
"220849519740652334387087416129347841606",
"44755218562772471969276033128687237599",
"187509049743654601113230993677056386978",
"127998871206268943743793244211387861051",
"35001246691999986654258969797200934647",
"154451012399210212378957034317929194033",
"83356908977625177788726003061730849074",
"124144290967415372936745119766424927133",
"301131754136700001291533453329858700779",
"244082238549714603089529603584981182440",
"190059877548758566625077150028076933780",
"111441261541234189256866297875955181412",
"320169372972656149618854482153923966186"
],
"threshold": 0.9
},
"signature_version": "v1",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@8d26acf8477174d8ef690eb6affe13a630f586ae",
"deprecated": false,
"id": "CVE-2025-40146-5deda625",
"signature_type": "Line"
},
{
"target": {
"file": "block/blk-sysfs.c"
},
"digest": {
"line_hashes": [
"75722216342391204771271055053948292317",
"115758507122549832030167547794179916353",
"212012508669856831758711723215761146360",
"259976876169430708687774899495038937855",
"45591744663417789132953482815916318660",
"58084204925697508140810051992794083447",
"152107553750506755150496926363188290981",
"328847005848895797885967262735213972191",
"127998871206268943743793244211387861051",
"35001246691999986654258969797200934647",
"154451012399210212378957034317929194033",
"83356908977625177788726003061730849074",
"124144290967415372936745119766424927133",
"301131754136700001291533453329858700779",
"244082238549714603089529603584981182440",
"190059877548758566625077150028076933780",
"111441261541234189256866297875955181412",
"320169372972656149618854482153923966186"
],
"threshold": 0.9
},
"signature_version": "v1",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@b86433721f46d934940528f28d49c1dedb690df1",
"deprecated": false,
"id": "CVE-2025-40146-700e8b6e",
"signature_type": "Line"
},
{
"target": {
"function": "blk_mq_update_nr_requests",
"file": "block/blk-mq.c"
},
"digest": {
"length": 1110.0,
"function_hash": "220287075877728837942163612908690290811"
},
"signature_version": "v1",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@b86433721f46d934940528f28d49c1dedb690df1",
"deprecated": false,
"id": "CVE-2025-40146-7a6788f7",
"signature_type": "Function"
},
{
"target": {
"function": "queue_requests_store",
"file": "block/blk-sysfs.c"
},
"digest": {
"length": 879.0,
"function_hash": "25157198279904553675622222881947896288"
},
"signature_version": "v1",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@8d26acf8477174d8ef690eb6affe13a630f586ae",
"deprecated": false,
"id": "CVE-2025-40146-aceb05bc",
"signature_type": "Function"
},
{
"target": {
"file": "block/blk-mq.h"
},
"digest": {
"line_hashes": [
"291210528113941806425498823306035216352",
"77795302693710524399813885688809653831",
"201125334653127348197748578244201415699",
"140848658644071853460961721793426251245",
"161016058355586504305935784535921547449",
"226617934248780214106272873356416846972",
"277065176613912321699660748470891263685",
"145098843449924153305312406356387054297"
],
"threshold": 0.9
},
"signature_version": "v1",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@b86433721f46d934940528f28d49c1dedb690df1",
"deprecated": false,
"id": "CVE-2025-40146-c4328df8",
"signature_type": "Line"
},
{
"target": {
"function": "queue_requests_store",
"file": "block/blk-sysfs.c"
},
"digest": {
"length": 835.0,
"function_hash": "339620783437408978313274615694987710943"
},
"signature_version": "v1",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@b86433721f46d934940528f28d49c1dedb690df1",
"deprecated": false,
"id": "CVE-2025-40146-d936485e",
"signature_type": "Function"
},
{
"target": {
"function": "blk_mq_update_nr_requests",
"file": "block/blk-mq.c"
},
"digest": {
"length": 1110.0,
"function_hash": "220287075877728837942163612908690290811"
},
"signature_version": "v1",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@8d26acf8477174d8ef690eb6affe13a630f586ae",
"deprecated": false,
"id": "CVE-2025-40146-f2e199b1",
"signature_type": "Function"
},
{
"target": {
"file": "block/blk-mq.h"
},
"digest": {
"line_hashes": [
"291210528113941806425498823306035216352",
"77795302693710524399813885688809653831",
"201125334653127348197748578244201415699",
"140848658644071853460961721793426251245",
"161016058355586504305935784535921547449",
"226617934248780214106272873356416846972",
"277065176613912321699660748470891263685",
"145098843449924153305312406356387054297"
],
"threshold": 0.9
},
"signature_version": "v1",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@8d26acf8477174d8ef690eb6affe13a630f586ae",
"deprecated": false,
"id": "CVE-2025-40146-f9c2fdea",
"signature_type": "Line"
}
]