Linux Kernel NVDIMM Deadlock Vulnerability

A deadlock vulnerability has been identified in the Linux kernel's NVDIMM (Non-Volatile Dual In-line Memory Module) subsystem, specifically within 'nd_region' devices. The issue arises from improper locking mechanisms during power management operations, which can lead to circular wait conditions. Lockdep, the kernel's locking debugger, has reported these deadlock scenarios, highlighting unsafe locking sequences that can occur when certain locks are held simultaneously by different CPUs. The vulnerability stems from holding the NVDIMM bus lock during operations that traverse the device topology, creating redundant lock dependencies that can be exploited to cause a deadlock.

Impact

Exploitation of this vulnerability leads to deadlock scenarios, where processes become stuck waiting for each other to release locks, causing a halt in operations that can degrade system performance or availability.