Volerion logoVolerion
Volerion logoVolerion

Linux Kernel Ublk Driver Queue Recovery Interruption Vulnerability

Vulnerability

A vulnerability in the Linux kernel's ublk driver has been addressed. The issue arose in the 'ublk_ctrl_end_recovery()' function, where the 'wait_for_completion_interruptible()' call could be interrupted by a signal before the queues were fully set up. This interruption could lead to an incomplete recovery process, causing a kernel oops error. The vulnerability has been fixed by ensuring that the recovery command is properly terminated if the completion wait is interrupted.

Impact

The vulnerability could cause a kernel oops, leading to a system crash or instability.

Reproduction

The vulnerability can be reproduced by sending a signal to a process that is in the 'ublk_ctrl_end_recovery()' function, before the queue setup is complete. This interruption will cause the recovery process to fail, but without properly signaling the end of the recovery command, which can then trigger a kernel oops error.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been fixed.

Added: Sep 15, 2025, 6:04 PM
Updated: Sep 15, 2025, 6:04 PM

Vulnerability Rating

Custom Algorithm
spread
9.0
impact
2.5
exploitability
3.9
remediation
7.7
relevance
0.5
threat
4.8
urgency
2.9
incentive
1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.