Linux Kernel Loop Device Free Disk Vulnerability

Vulnerability

A vulnerability in the Linux kernel's loop device driver has been addressed. The issue involved ensuring that the loop device associated with the gendisk private data remained valid until the gendisk was completely freed. The loop driver previously took significant measures to prevent a device from being released while still in use. However, to resolve a potential deadlock, this restriction will be eased slightly in the near future.

Impact

The vulnerability could lead to a use-after-free condition, potentially causing a deadlock situation.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Loop Device Free Disk Vulnerability

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating