Primary

Context

Linux Kernel SCSI Subsystem I/O Request Count Handling Vulnerability

Vulnerability

Patched

A vulnerability in the Linux kernel's SCSI subsystem could lead to a kernel panic. This issue arises because the SCSI command's device may be freed after the command is dispatched, causing a race condition when the I/O request count is incremented. The vulnerability is present in the Linux kernel stable tree.

Impact

The vulnerability can cause a kernel panic, disrupting system operations and potentially leading to a denial of service.

Remediation

Users can upgrade to the latest version of the Linux kernel stable tree to address this vulnerability.

Added: Oct 4, 2025, 4:26 PM

Updated: Oct 4, 2025, 4:26 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

7.7

relevance

0.7

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

7.7

relevance

0.7

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel SCSI Subsystem I/O Request Count Handling Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating