Linux Kernel rhashtable Deadlock Vulnerability

Vulnerability

A potential deadlock vulnerability in the Linux kernel's rhashtable implementation has been addressed. The issue arose from a circular locking dependency involving nested locks between the rhashtable bucket, rq lock, and dsq lock. The original design could trigger a lockdep warning due to this deadlock scenario. By moving the hash table growth check and work scheduling outside of the rhashtable lock, the vulnerability was resolved, breaking the deadlock chain. This modification enhances rhashtable's flexibility by removing restrictive locking that previously constrained its use in scheduler and workqueue contexts.

Impact

The vulnerability could lead to a deadlock situation, causing processes to hang indefinitely, waiting for locks to be released.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

3.5

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

3.5

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel rhashtable Deadlock Vulnerability

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating