Linux Kernel RISC-V Sleeping Function Vulnerability in Exception Handler

Vulnerability

A vulnerability exists in the Linux kernel for RISC-V architecture, where the 'die()' function can be called within an exception handler context that does not allow sleeping. The 'die()' function, however, takes a spinlock that can sleep when PREEMPT_RT is enabled, leading to a warning about sleeping functions being called from an invalid context. This issue was resolved by switching to a raw spinlock, which does not sleep even with PREEMPT_RT enabled.

Impact

The vulnerability could lead to a deadlock situation, where the system becomes unresponsive due to improper handling of sleep functions in a critical context.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel RISC-V Sleeping Function Vulnerability in Exception Handler

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating