Primary

Context

Linux Kernel Deadlock Vulnerability in RTL8192E Staging Driver

Vulnerability

A deadlock vulnerability has been identified in the Linux kernel's staging driver for the RTL8192E wireless chipset. The issue arises in the 'rtllib_beacons_stop()' function, where a thread (Thread 1) sends a beacon while holding a lock. This thread then calls 'del_timer_sync()' to wait for a timer to stop, but the timer handler needs the same lock, creating a circular wait condition that causes the function to block indefinitely. The vulnerability affects several versions of the Linux kernel.

Impact

Exploitation of this vulnerability leads to a deadlock, causing the 'rtllib_beacons_stop()' function to block indefinitely.

Remediation

The vulnerability has been addressed in the official Linux kernel repository. Users should upgrade to the latest version of the Linux kernel where this issue has been fixed.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.1

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.1

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Deadlock Vulnerability in RTL8192E Staging Driver

Vulnerability

Impact

Remediation

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating