CVE-2025-68732

Linux Kernel - Race Condition in host1x Syncpoint Allocation/Release

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: gpu: host1x: Fix race in syncpt alloc/free Fix race condition between host1x_syncpt_alloc() and host1x_syncpt_put() by using kref_put_mutex() instead of kref_put() + manual mutex locking. This ensures no thread can acquire the syncpt_mutex after the refcount drops to zero but before syncpt_release acquires it. This prevents races where syncpoints could be allocated while still being cleaned up from a previous release. Remove explicit mutex locking in syncpt_release as kref_put_mutex() handles this atomically.

References (7)

Core 7

Core References

Patch

https://git.kernel.org/stable/c/ca9388fba50dac2eb71c13702b7022a801bef90e

Patch

https://git.kernel.org/stable/c/4aeaece518fa4436af93d1d8b786200d9656ff4b

Patch

https://git.kernel.org/stable/c/6245cce711e2cdb2cc75c0bb8632952e36f8c972

Patch

https://git.kernel.org/stable/c/4e6e07ce0197aecfb6c4a62862acc93b3efedeb7

Patch

https://git.kernel.org/stable/c/d138f73ffb0c57ded473c577719e6e551b7b1f27

Patch

https://git.kernel.org/stable/c/79197c6007f2afbfd7bcf5b9b80ccabf8483d774

Patch

https://git.kernel.org/stable/c/c7d393267c497502fa737607f435f05dfe6e3d9b

Scores

EPSS 0.0005

EPSS Percentile 15.3%

Details

Status published

Products (22)

linux/Kernel 5.13.0 - 5.15.198linux

linux/Kernel 5.16.0 - 6.1.160linux

linux/Kernel 6.13.0 - 6.17.13linux

linux/Kernel 6.18.0 - 6.18.2linux

linux/Kernel 6.2.0 - 6.6.120linux

linux/Kernel 6.7.0 - 6.12.63linux

Linux/Linux < 5.13

Linux/Linux 5.13

Linux/Linux 5.15.198 - 5.15.*

Linux/Linux 6.1.160 - 6.1.*

... and 12 more

Published Dec 24, 2025

Tracked Since Feb 18, 2026