Race Condition in Linux Kernel Affecting Lockspace Management
CVE-2025-40242

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 4 December 2025

What is CVE-2025-40242?

A vulnerability exists in the Linux kernel related to a race condition in the gdlm_put_lock function, where a timing issue can arise following the setting of the DFL_UNMOUNT flag. During this brief interval, the lockspace may not yet be fully released, leading to potential dereferencing of freed glock objects. This issue could jeopardize system stability by resulting in undefined behavior. The implementation has been revised to ensure that glock objects are only freed after confirming the lockspace has been completely released.

Affected Version(s)

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 279bde3bbb0ac0bad5c729dfa85983d75a5d7641

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 64c61b4ac645222fa7b724cef616c1f862a72a40

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 28c4d9bc0708956c1a736a9e49fee71b65deee81

References

https://git.kernel.org/stable/c/279bde3bbb0ac0bad5c729dfa...

https://git.kernel.org/stable/c/64c61b4ac645222fa7b724cef...

https://git.kernel.org/stable/c/28c4d9bc0708956c1a736a9e4...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 4, 2025
Vulnerability Reserved
Apr 16, 2025

JSON