{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"cveId":"CVE-2025-23161","assignerOrgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","state":"PUBLISHED","assignerShortName":"Linux","dateReserved":"2025-01-11T14:28:41.515Z","datePublished":"2025-05-01T12:55:46.021Z","dateUpdated":"2026-05-11T21:14:09.062Z"},"containers":{"cna":{"providerMetadata":{"orgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","shortName":"Linux","dateUpdated":"2026-05-11T21:14:09.062Z"},"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nPCI: vmd: Make vmd_dev::cfg_lock a raw_spinlock_t type\n\nThe access to the PCI config space via pci_ops::read and pci_ops::write is\na low-level hardware access. The functions can be accessed with disabled\ninterrupts even on PREEMPT_RT. The pci_lock is a raw_spinlock_t for this\npurpose.\n\nA spinlock_t becomes a sleeping lock on PREEMPT_RT, so it cannot be\nacquired with disabled interrupts. The vmd_dev::cfg_lock is accessed in\nthe same context as the pci_lock.\n\nMake vmd_dev::cfg_lock a raw_spinlock_t type so it can be used with\ninterrupts disabled.\n\nThis was reported as:\n\n  BUG: sleeping function called from invalid context at kernel/locking/spinlock_rt.c:48\n  Call Trace:\n   rt_spin_lock+0x4e/0x130\n   vmd_pci_read+0x8d/0x100 [vmd]\n   pci_user_read_config_byte+0x6f/0xe0\n   pci_read_config+0xfe/0x290\n   sysfs_kf_bin_read+0x68/0x90\n\n[bigeasy: reword commit message]\nTested-off-by: Luis Claudio R. Goncalves <lgoncalv@redhat.com>\n[kwilczynski: commit log]\n[bhelgaas: add back report info from\nhttps://lore.kernel.org/lkml/20241218115951.83062-1-ryotkkr98@gmail.com/]"}],"affected":[{"product":"Linux","vendor":"Linux","defaultStatus":"unaffected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["drivers/pci/controller/vmd.c"],"versions":[{"version":"185a383ada2e7794b0e82e040223e741b24d2bf8","lessThan":"c250262d6485ca333e9821f85b07eb383ec546b1","status":"affected","versionType":"git"},{"version":"185a383ada2e7794b0e82e040223e741b24d2bf8","lessThan":"c2968c812339593ac6e2bdd5cc3adabe3f05fa53","status":"affected","versionType":"git"},{"version":"185a383ada2e7794b0e82e040223e741b24d2bf8","lessThan":"13e5148f70e81991acbe0bab5b1b50ba699116e7","status":"affected","versionType":"git"},{"version":"185a383ada2e7794b0e82e040223e741b24d2bf8","lessThan":"5c3cfcf0b4bf43530788b08a8eaf7896ec567484","status":"affected","versionType":"git"},{"version":"185a383ada2e7794b0e82e040223e741b24d2bf8","lessThan":"2358046ead696ca5c7c628d6c0e2c6792619a3e5","status":"affected","versionType":"git"},{"version":"185a383ada2e7794b0e82e040223e741b24d2bf8","lessThan":"20d0a9062c031068fa39f725a32f182b709b5525","status":"affected","versionType":"git"},{"version":"185a383ada2e7794b0e82e040223e741b24d2bf8","lessThan":"18056a48669a040bef491e63b25896561ee14d90","status":"affected","versionType":"git"}]},{"product":"Linux","vendor":"Linux","defaultStatus":"affected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["drivers/pci/controller/vmd.c"],"versions":[{"version":"4.5","status":"affected"},{"version":"0","lessThan":"4.5","status":"unaffected","versionType":"semver"},{"version":"5.15.181","lessThanOrEqual":"5.15.*","status":"unaffected","versionType":"semver"},{"version":"6.1.135","lessThanOrEqual":"6.1.*","status":"unaffected","versionType":"semver"},{"version":"6.6.88","lessThanOrEqual":"6.6.*","status":"unaffected","versionType":"semver"},{"version":"6.12.24","lessThanOrEqual":"6.12.*","status":"unaffected","versionType":"semver"},{"version":"6.13.12","lessThanOrEqual":"6.13.*","status":"unaffected","versionType":"semver"},{"version":"6.14.3","lessThanOrEqual":"6.14.*","status":"unaffected","versionType":"semver"},{"version":"6.15","lessThanOrEqual":"*","status":"unaffected","versionType":"original_commit_for_fix"}]}],"cpeApplicability":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.5","versionEndExcluding":"5.15.181"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.5","versionEndExcluding":"6.1.135"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.5","versionEndExcluding":"6.6.88"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.5","versionEndExcluding":"6.12.24"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.5","versionEndExcluding":"6.13.12"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.5","versionEndExcluding":"6.14.3"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.5","versionEndExcluding":"6.15"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/c250262d6485ca333e9821f85b07eb383ec546b1"},{"url":"https://git.kernel.org/stable/c/c2968c812339593ac6e2bdd5cc3adabe3f05fa53"},{"url":"https://git.kernel.org/stable/c/13e5148f70e81991acbe0bab5b1b50ba699116e7"},{"url":"https://git.kernel.org/stable/c/5c3cfcf0b4bf43530788b08a8eaf7896ec567484"},{"url":"https://git.kernel.org/stable/c/2358046ead696ca5c7c628d6c0e2c6792619a3e5"},{"url":"https://git.kernel.org/stable/c/20d0a9062c031068fa39f725a32f182b709b5525"},{"url":"https://git.kernel.org/stable/c/18056a48669a040bef491e63b25896561ee14d90"}],"title":"PCI: vmd: Make vmd_dev::cfg_lock a raw_spinlock_t type","x_generator":{"engine":"bippy-1.2.0"}},"adp":[{"title":"CVE Program Container","references":[{"url":"https://lists.debian.org/debian-lts-announce/2025/05/msg00045.html"}],"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2025-11-03T19:43:01.027Z"}}]}}