CVE-2026-31480

MEDIUM

tracing: Fix potential deadlock in cpu hotplug with osnoise

Title source: cna

Description

In the Linux kernel, the following vulnerability has been resolved: tracing: Fix potential deadlock in cpu hotplug with osnoise The following sequence may leads deadlock in cpu hotplug: task1 task2 task3 ----- ----- ----- mutex_lock(&interface_lock) [CPU GOING OFFLINE] cpus_write_lock(); osnoise_cpu_die(); kthread_stop(task3); wait_for_completion(); osnoise_sleep(); mutex_lock(&interface_lock); cpus_read_lock(); [DEAD LOCK] Fix by swap the order of cpus_read_lock() and mutex_lock(&interface_lock).

References (7)

https://git.kernel.org/stable/c/cf929c21eeed5bd39873fb14bfdfff963fa6f1da

https://git.kernel.org/stable/c/7aa095ce7d224308cb6979956f0de8607df93d4f

https://git.kernel.org/stable/c/ef41a85a55022e27cdaebf22a6676910b66f65aa

https://git.kernel.org/stable/c/03474a01c199de17a8e2d39b51df6beb9c76e831

https://git.kernel.org/stable/c/f278b8ebf7eba2a1699cfc7bf30dd3ef898d60d7

https://git.kernel.org/stable/c/7a41d4633cd2c15eb5ed31e8f3b16910e50a8c9f

https://git.kernel.org/stable/c/1f9885732248d22f788e4992c739a98c88ab8a55

Scores

CVSS v3 5.5

EPSS 0.0001

EPSS Percentile 1.7%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-667

Status published

Products (19)

Linux/Linux < 5.14

Linux/Linux 5.14

Linux/Linux 5.15.203 - 5.15.*

Linux/Linux 6.1.168 - 6.1.*

Linux/Linux 6.12.80 - 6.12.*

Linux/Linux 6.18.21 - 6.18.*

Linux/Linux 6.19.11 - 6.19.*

Linux/Linux 6.6.131 - 6.6.*

Linux/Linux 7.0

Linux/Linux bce29ac9ce0bb0b0b146b687ab978378c21e9078 - 03474a01c199de17a8e2d39b51df6beb9c76e831

... and 9 more

Published Apr 22, 2026

Tracked Since Apr 22, 2026