CVE-2025-71309

Source
https://cve.org/CVERecord?id=CVE-2025-71309
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-71309.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2025-71309
Downstream
Published
2026-05-27T12:15:03.360Z
Modified
2026-07-08T07:32:21.451822378Z
Summary
fs/ntfs3: fix deadlock in ni_read_folio_cmpr
Details

In the Linux kernel, the following vulnerability has been resolved:

fs/ntfs3: fix deadlock in nireadfolio_cmpr

Syzbot reported a task hung in nireadpagecmpr (now nireadfoliocmpr). This is caused by a lock inversion deadlock involving the inode mutex (nilock) and page locks.

Scenario: 1. Task A enters ntfsreadfolio() for page X. It acquires nilock. 2. Task A calls nireadfoliocmpr(), which attempts to lock all pages in the compressed frame (including page Y). 3. Concurrently, Task B (e.g., via readahead) has locked page Y and calls ntfsreadfolio(). 4. Task B waits for ni_lock (held by A). 5. Task A waits for page Y lock (held by B). -> DEADLOCK.

The fix is to restructure locking: do not take nilock in ntfsreadfolio(). Instead, acquire nilock inside nireadfoliocmpr() ONLY AFTER all required page locks for the frame have been successfully acquired. This restores the correct lock ordering (Page Lock -> nilock) consistent with VFS.

[almaz.alexandrovich@paragon-software.com: nireadpagecmpr was renamed to nireadfolio_cmpr]

Database specific
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/71xxx/CVE-2025-71309.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
f35590ee26f5722bfe12cdff14396c4c057a8f74
Fixed
cfe246b318106e1691bd6c9466c739e8559d25c2
Fixed
e37a75bb866c29da954b51d0dd7670406246d9ee

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-71309.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
6.19.0
Fixed
6.19.4

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-71309.json"