Linux Kernel Backlight LED Control Lock Handling Vulnerability

Vulnerability

A vulnerability has been identified in the Linux kernel's backlight LED control system. The issue arises because the 'led_sysfs_disable()' function is called without holding the 'led_access' lock', which can lead to a warning from Lockdep about the improper handling of LED state management during the removal of LED backlight devices. This vulnerability affects several versions of the Linux kernel.

Impact

The vulnerability can lead to improper LED state management, potentially causing synchronization issues or incorrect behavior in LED control.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Backlight LED Control Lock Handling Vulnerability

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating