Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

Linux Kernel Vulnerability: Lock Inversion in vsock Module

UBUNTU-CVE-2025-40231
Summary

A bug in the Linux kernel's vsock module could cause a deadlock between two locks, potentially freezing the system. This has been fixed in the latest kernel update, and users are advised to apply the patch to prevent any issues. Linux system administrators should update their kernel to the latest version to ensure the fix is applied.

What to do
  • Update canonical linux-aws-5.15 to version 5.15.0-1100.107~20.04.2.
  • Update canonical linux-azure-5.15 to version 5.15.0-1110.119~20.04.1.
  • Update canonical linux-gcp-5.15 to version 5.15.0-1100.109~20.04.1.
  • Update canonical linux-hwe-5.15 to version 5.15.0-170.180~20.04.3.
  • Update canonical linux-ibm-5.15 to version 5.15.0-1094.97~20.04.1.
  • Update canonical linux-intel-iotg-5.15 to version 5.15.0-1095.101~20.04.1.
  • Update canonical linux-lowlatency-hwe-5.15 to version 5.15.0-170.180~20.04.1.
  • Update canonical linux-nvidia-tegra-5.15 to version 5.15.0-1052.52~20.04.2.
  • Update canonical linux-oracle-5.15 to version 5.15.0-1097.103~20.04.1.
  • Update canonical linux-riscv-5.15 to version 5.15.0-1095.99~20.04.1.
  • Update canonical linux to version 5.15.0-170.180.
  • Update canonical linux-aws to version 5.15.0-1100.107.
  • Update canonical linux-aws-6.8 to version 6.8.0-1050.53~22.04.1.
  • Update canonical linux-azure to version 5.15.0-1109.118.
  • Update canonical linux-gcp to version 5.15.0-1100.109.
  • Update canonical linux-gcp-6.8 to version 6.8.0-1052.55~22.04.1.
  • Update canonical linux-gke to version 5.15.0-1096.102.
  • Update canonical linux-gkeop to version 5.15.0-1083.91.
  • Update canonical linux-hwe-6.8 to version 6.8.0-106.106~22.04.1.
  • Update canonical linux-ibm to version 5.15.0-1094.97.
  • Update canonical linux-ibm-6.8 to version 6.8.0-1049.49~22.04.1.
  • Update canonical linux-intel-iotg to version 5.15.0-1095.101.
  • Update canonical linux-kvm to version 5.15.0-1092.97.
  • Update canonical linux-lowlatency to version 5.15.0-170.180.
  • Update canonical linux-lowlatency-hwe-6.8 to version 6.8.0-106.106.1~22.04.1.
  • Update canonical linux-nvidia to version 5.15.0-1095.96.
  • Update canonical linux-nvidia-6.8 to version 6.8.0-1049.52~22.04.1.
  • Update canonical linux-nvidia-tegra to version 5.15.0-1052.52.
  • Update canonical linux-nvidia-tegra-igx to version 5.15.0-1041.41.
  • Update canonical linux-oracle to version 5.15.0-1097.103.
  • Update canonical linux-oracle-6.8 to version 6.8.0-1047.48~22.04.1.
  • Update canonical linux-raspi to version 5.15.0-1097.100.
  • Update canonical linux-riscv-6.8 to version 6.8.0-106.106~22.04.1.
  • Update canonical linux-xilinx-zynqmp to version 5.15.0-1064.68.
  • Update canonical linux-bluefield to version 5.15.0-1084.86.
  • Update canonical linux-aws-fips to version 5.15.0-1100.107+fips1.
  • Update canonical linux-azure-fips to version 5.15.0-1109.118+fips1.
  • Update canonical linux-fips to version 5.15.0-170.180+fips1.
  • Update canonical linux-gcp-fips to version 5.15.0-1100.109+fips1.
  • Update canonical linux-intel-iot-realtime to version 5.15.0-1092.94.
  • Update canonical linux-realtime to version 5.15.0-1099.108.
  • Update canonical linux-realtime-6.8 to version 6.8.1-1045.46~22.04.1.
  • Update canonical linux to version 6.8.0-106.106.
  • Update canonical linux-aws to version 6.8.0-1050.53.
  • Update canonical linux-aws-6.17 to version 6.17.0-1007.7~24.04.1.
  • Update canonical linux-azure to version 6.8.0-1051.57.
  • Update canonical linux-gcp to version 6.8.0-1052.55.
  • Update canonical linux-gcp-6.17 to version 6.17.0-1008.8~24.04.1.
  • Update canonical linux-gke to version 6.8.0-1048.53.
  • Update canonical linux-gkeop to version 6.8.0-1035.38.
  • Update canonical linux-ibm to version 6.8.0-1049.49.
  • Update canonical linux-lowlatency to version 6.8.0-106.106.1.
  • Update canonical linux-nvidia to version 6.8.0-1049.52.
  • Update canonical linux-nvidia-lowlatency to version 6.8.0-1049.52.1.
  • Update canonical linux-oem-6.17 to version 6.17.0-1011.11.
  • Update canonical linux-oracle to version 6.8.0-1047.48.
  • Update canonical linux-oracle-6.17 to version 6.17.0-1007.7~24.04.1.
  • Update canonical linux-raspi to version 6.8.0-1050.54.
  • Update canonical linux-aws-fips to version 6.8.0-1050.53+fips1.
  • Update canonical linux-azure-fips to version 6.8.0-1052.58+fips1.
  • Update canonical linux-fips to version 6.8.0-106.106+fips1.
  • Update canonical linux-gcp-fips to version 6.8.0-1052.55+fips1.
  • Update canonical linux-raspi-realtime to version 6.8.0-2040.41.
  • Update canonical linux-realtime to version 6.8.1-1045.46.
  • Update canonical linux-realtime-6.17 to version 6.17.0-1006.7~24.04.1.
  • Update canonical linux to version 6.17.0-14.14.
  • Update canonical linux-aws to version 6.17.0-1007.7.
  • Update canonical linux-azure to version 6.17.0-1008.8.
  • Update canonical linux-gcp to version 6.17.0-1007.7.
  • Update canonical linux-oracle to version 6.17.0-1007.7.
  • Update canonical linux-raspi to version 6.17.0-1008.8.
  • Update canonical linux-realtime to version 6.17.0-1006.7.
  • Update canonical linux-riscv to version 6.17.0-14.14.1.
Affected software
Ecosystem VendorProductAffected versions
Ubuntu:16.04:LTS canonical linux-hwe-edge All versions
Ubuntu:18.04:LTS canonical linux-aws-5.0 All versions
Ubuntu:18.04:LTS canonical linux-aws-5.3 All versions
Ubuntu:18.04:LTS canonical linux-azure All versions
Ubuntu:18.04:LTS canonical linux-azure-5.3 All versions
Ubuntu:18.04:LTS canonical linux-azure-edge All versions
Ubuntu:18.04:LTS canonical linux-gcp All versions
Ubuntu:18.04:LTS canonical linux-gcp-5.3 All versions
Ubuntu:18.04:LTS canonical linux-gke-4.15 All versions
Ubuntu:18.04:LTS canonical linux-gke-5.4 All versions
Ubuntu:18.04:LTS canonical linux-gkeop-5.4 All versions
Ubuntu:18.04:LTS canonical linux-hwe All versions
Ubuntu:18.04:LTS canonical linux-hwe-edge All versions
Ubuntu:18.04:LTS canonical linux-oem All versions
Ubuntu:18.04:LTS canonical linux-oracle-5.0 All versions
Ubuntu:18.04:LTS canonical linux-oracle-5.3 All versions
Ubuntu:20.04:LTS canonical linux-aws-5.11 All versions
Ubuntu:20.04:LTS canonical linux-aws-5.13 All versions
Ubuntu:Pro:20.04:LTS canonical linux-aws-5.15 < 5.15.0-1100.107~20.04.2
Fix: upgrade to 5.15.0-1100.107~20.04.2
Ubuntu:20.04:LTS canonical linux-aws-5.8 All versions
Ubuntu:20.04:LTS canonical linux-azure-5.11 All versions
Ubuntu:20.04:LTS canonical linux-azure-5.13 All versions
Ubuntu:Pro:20.04:LTS canonical linux-azure-5.15 < 5.15.0-1110.119~20.04.1
Fix: upgrade to 5.15.0-1110.119~20.04.1
Ubuntu:20.04:LTS canonical linux-azure-5.8 All versions
Ubuntu:20.04:LTS canonical linux-azure-fde All versions
Ubuntu:20.04:LTS canonical linux-gcp-5.11 All versions
Ubuntu:20.04:LTS canonical linux-gcp-5.13 All versions
Ubuntu:Pro:20.04:LTS canonical linux-gcp-5.15 < 5.15.0-1100.109~20.04.1
Fix: upgrade to 5.15.0-1100.109~20.04.1
Ubuntu:20.04:LTS canonical linux-gcp-5.8 All versions
Ubuntu:20.04:LTS canonical linux-gke All versions
Ubuntu:20.04:LTS canonical linux-gke-5.15 All versions
Ubuntu:20.04:LTS canonical linux-gkeop All versions
Ubuntu:20.04:LTS canonical linux-gkeop-5.15 All versions
Ubuntu:20.04:LTS canonical linux-hwe-5.11 All versions
Ubuntu:20.04:LTS canonical linux-hwe-5.13 All versions
Ubuntu:Pro:20.04:LTS canonical linux-hwe-5.15 < 5.15.0-170.180~20.04.3
Fix: upgrade to 5.15.0-170.180~20.04.3
Ubuntu:20.04:LTS canonical linux-hwe-5.8 All versions
Ubuntu:Pro:20.04:LTS canonical linux-ibm-5.15 < 5.15.0-1094.97~20.04.1
Fix: upgrade to 5.15.0-1094.97~20.04.1
Ubuntu:20.04:LTS canonical linux-intel-5.13 All versions
Ubuntu:Pro:20.04:LTS canonical linux-intel-iotg-5.15 < 5.15.0-1095.101~20.04.1
Fix: upgrade to 5.15.0-1095.101~20.04.1
Ubuntu:Pro:20.04:LTS canonical linux-lowlatency-hwe-5.15 < 5.15.0-170.180~20.04.1
Fix: upgrade to 5.15.0-170.180~20.04.1
Ubuntu:Pro:20.04:LTS canonical linux-nvidia-tegra-5.15 < 5.15.0-1052.52~20.04.2
Fix: upgrade to 5.15.0-1052.52~20.04.2
Ubuntu:20.04:LTS canonical linux-oem-5.10 All versions
Ubuntu:20.04:LTS canonical linux-oem-5.13 All versions
Ubuntu:20.04:LTS canonical linux-oem-5.14 All versions
Ubuntu:20.04:LTS canonical linux-oem-5.6 All versions
Ubuntu:20.04:LTS canonical linux-oracle-5.11 All versions
Ubuntu:20.04:LTS canonical linux-oracle-5.13 All versions
Ubuntu:Pro:20.04:LTS canonical linux-oracle-5.15 < 5.15.0-1097.103~20.04.1
Fix: upgrade to 5.15.0-1097.103~20.04.1
Ubuntu:20.04:LTS canonical linux-oracle-5.8 All versions
Ubuntu:20.04:LTS canonical linux-raspi2 All versions
Ubuntu:20.04:LTS canonical linux-riscv All versions
Ubuntu:20.04:LTS canonical linux-riscv-5.11 All versions
Ubuntu:Pro:20.04:LTS canonical linux-riscv-5.15 < 5.15.0-1095.99~20.04.1
Fix: upgrade to 5.15.0-1095.99~20.04.1
Ubuntu:20.04:LTS canonical linux-riscv-5.8 All versions
Ubuntu:22.04:LTS canonical linux < 5.15.0-170.180
Fix: upgrade to 5.15.0-170.180
Ubuntu:22.04:LTS canonical linux-allwinner-5.19 All versions
Ubuntu:22.04:LTS canonical linux-aws < 5.15.0-1100.107
Fix: upgrade to 5.15.0-1100.107
Ubuntu:22.04:LTS canonical linux-aws-5.19 All versions
Ubuntu:22.04:LTS canonical linux-aws-6.2 All versions
Ubuntu:22.04:LTS canonical linux-aws-6.5 All versions
Ubuntu:22.04:LTS canonical linux-aws-6.8 < 6.8.0-1050.53~22.04.1
Fix: upgrade to 6.8.0-1050.53~22.04.1
Ubuntu:22.04:LTS canonical linux-azure < 5.15.0-1109.118
Fix: upgrade to 5.15.0-1109.118
Ubuntu:22.04:LTS canonical linux-azure-5.19 All versions
Ubuntu:22.04:LTS canonical linux-azure-6.2 All versions
Ubuntu:22.04:LTS canonical linux-azure-6.5 All versions
Ubuntu:22.04:LTS canonical linux-azure-fde All versions
Ubuntu:22.04:LTS canonical linux-azure-fde-5.19 All versions
Ubuntu:22.04:LTS canonical linux-azure-fde-6.2 All versions
Ubuntu:22.04:LTS canonical linux-gcp < 5.15.0-1100.109
Fix: upgrade to 5.15.0-1100.109
Ubuntu:22.04:LTS canonical linux-gcp-5.19 All versions
Ubuntu:22.04:LTS canonical linux-gcp-6.2 All versions
Ubuntu:22.04:LTS canonical linux-gcp-6.5 All versions
Ubuntu:22.04:LTS canonical linux-gcp-6.8 < 6.8.0-1052.55~22.04.1
Fix: upgrade to 6.8.0-1052.55~22.04.1
Ubuntu:22.04:LTS canonical linux-gke < 5.15.0-1096.102
Fix: upgrade to 5.15.0-1096.102
Ubuntu:22.04:LTS canonical linux-gkeop < 5.15.0-1083.91
Fix: upgrade to 5.15.0-1083.91
Ubuntu:22.04:LTS canonical linux-hwe-5.19 All versions
Ubuntu:22.04:LTS canonical linux-hwe-6.2 All versions
Ubuntu:22.04:LTS canonical linux-hwe-6.5 All versions
Ubuntu:22.04:LTS canonical linux-hwe-6.8 < 6.8.0-106.106~22.04.1
Fix: upgrade to 6.8.0-106.106~22.04.1
Ubuntu:22.04:LTS canonical linux-ibm < 5.15.0-1094.97
Fix: upgrade to 5.15.0-1094.97
Ubuntu:22.04:LTS canonical linux-ibm-6.8 < 6.8.0-1049.49~22.04.1
Fix: upgrade to 6.8.0-1049.49~22.04.1
Ubuntu:22.04:LTS canonical linux-intel-iot-realtime All versions
Ubuntu:22.04:LTS canonical linux-intel-iotg < 5.15.0-1095.101
Fix: upgrade to 5.15.0-1095.101
Ubuntu:22.04:LTS canonical linux-kvm < 5.15.0-1092.97
Fix: upgrade to 5.15.0-1092.97
Ubuntu:22.04:LTS canonical linux-lowlatency < 5.15.0-170.180
Fix: upgrade to 5.15.0-170.180
Ubuntu:22.04:LTS canonical linux-lowlatency-hwe-5.19 All versions
Ubuntu:22.04:LTS canonical linux-lowlatency-hwe-6.2 All versions
Ubuntu:22.04:LTS canonical linux-lowlatency-hwe-6.5 All versions
Ubuntu:22.04:LTS canonical linux-lowlatency-hwe-6.8 < 6.8.0-106.106.1~22.04.1
Fix: upgrade to 6.8.0-106.106.1~22.04.1
Ubuntu:22.04:LTS canonical linux-nvidia < 5.15.0-1095.96
Fix: upgrade to 5.15.0-1095.96
Ubuntu:22.04:LTS canonical linux-nvidia-6.2 All versions
Ubuntu:22.04:LTS canonical linux-nvidia-6.5 All versions
Ubuntu:22.04:LTS canonical linux-nvidia-6.8 < 6.8.0-1049.52~22.04.1
Fix: upgrade to 6.8.0-1049.52~22.04.1
Ubuntu:22.04:LTS canonical linux-nvidia-tegra < 5.15.0-1052.52
Fix: upgrade to 5.15.0-1052.52
Ubuntu:22.04:LTS canonical linux-nvidia-tegra-igx < 5.15.0-1041.41
Fix: upgrade to 5.15.0-1041.41
Ubuntu:22.04:LTS canonical linux-oem-5.17 All versions
Ubuntu:22.04:LTS canonical linux-oem-6.0 All versions
Ubuntu:22.04:LTS canonical linux-oem-6.1 All versions
Ubuntu:22.04:LTS canonical linux-oem-6.5 All versions
Ubuntu:22.04:LTS canonical linux-oracle < 5.15.0-1097.103
Fix: upgrade to 5.15.0-1097.103
Ubuntu:22.04:LTS canonical linux-oracle-6.5 All versions
Ubuntu:22.04:LTS canonical linux-oracle-6.8 < 6.8.0-1047.48~22.04.1
Fix: upgrade to 6.8.0-1047.48~22.04.1
Ubuntu:22.04:LTS canonical linux-raspi < 5.15.0-1097.100
Fix: upgrade to 5.15.0-1097.100
Ubuntu:22.04:LTS canonical linux-realtime All versions
Ubuntu:22.04:LTS canonical linux-riscv All versions
Ubuntu:22.04:LTS canonical linux-riscv-5.19 All versions
Ubuntu:22.04:LTS canonical linux-riscv-6.5 All versions
Ubuntu:22.04:LTS canonical linux-riscv-6.8 < 6.8.0-106.106~22.04.1
Fix: upgrade to 6.8.0-106.106~22.04.1
Ubuntu:22.04:LTS canonical linux-starfive-5.19 All versions
Ubuntu:22.04:LTS canonical linux-starfive-6.2 All versions
Ubuntu:22.04:LTS canonical linux-starfive-6.5 All versions
Ubuntu:22.04:LTS canonical linux-xilinx-zynqmp < 5.15.0-1064.68
Fix: upgrade to 5.15.0-1064.68
Ubuntu:Nvidia-BlueField:22.04:LTS canonical linux-bluefield < 5.15.0-1084.86
Fix: upgrade to 5.15.0-1084.86
Ubuntu:Pro:FIPS-updates:22.04:LTS canonical linux-aws-fips < 5.15.0-1100.107+fips1
Fix: upgrade to 5.15.0-1100.107+fips1
Ubuntu:Pro:FIPS-updates:22.04:LTS canonical linux-azure-fips < 5.15.0-1109.118+fips1
Fix: upgrade to 5.15.0-1109.118+fips1
Ubuntu:Pro:FIPS-updates:22.04:LTS canonical linux-fips < 5.15.0-170.180+fips1
Fix: upgrade to 5.15.0-170.180+fips1
Ubuntu:Pro:FIPS-updates:22.04:LTS canonical linux-gcp-fips < 5.15.0-1100.109+fips1
Fix: upgrade to 5.15.0-1100.109+fips1
Ubuntu:Pro:Realtime:22.04:LTS canonical linux-intel-iot-realtime < 5.15.0-1092.94
Fix: upgrade to 5.15.0-1092.94
Ubuntu:Pro:Realtime:22.04:LTS canonical linux-realtime < 5.15.0-1099.108
Fix: upgrade to 5.15.0-1099.108
Ubuntu:Pro:Realtime:22.04:LTS canonical linux-realtime-6.8 < 6.8.1-1045.46~22.04.1
Fix: upgrade to 6.8.1-1045.46~22.04.1
Ubuntu:24.04:LTS canonical linux < 6.8.0-106.106
Fix: upgrade to 6.8.0-106.106
Ubuntu:24.04:LTS canonical linux-aws < 6.8.0-1050.53
Fix: upgrade to 6.8.0-1050.53
Ubuntu:24.04:LTS canonical linux-aws-6.14 All versions
Ubuntu:24.04:LTS canonical linux-aws-6.17 < 6.17.0-1007.7~24.04.1
Fix: upgrade to 6.17.0-1007.7~24.04.1
Ubuntu:24.04:LTS canonical linux-azure < 6.8.0-1051.57
Fix: upgrade to 6.8.0-1051.57
Ubuntu:24.04:LTS canonical linux-azure-6.11 All versions
Ubuntu:24.04:LTS canonical linux-azure-6.14 All versions
Ubuntu:24.04:LTS canonical linux-azure-fde-6.14 All versions
Ubuntu:24.04:LTS canonical linux-azure-fde-6.17 All versions
Ubuntu:24.04:LTS canonical linux-azure-nvidia-6.14 All versions
Ubuntu:24.04:LTS canonical linux-gcp < 6.8.0-1052.55
Fix: upgrade to 6.8.0-1052.55
Ubuntu:24.04:LTS canonical linux-gcp-6.11 All versions
Ubuntu:24.04:LTS canonical linux-gcp-6.14 All versions
Ubuntu:24.04:LTS canonical linux-gcp-6.17 < 6.17.0-1008.8~24.04.1
Fix: upgrade to 6.17.0-1008.8~24.04.1
Ubuntu:24.04:LTS canonical linux-gke < 6.8.0-1048.53
Fix: upgrade to 6.8.0-1048.53
Ubuntu:24.04:LTS canonical linux-gkeop < 6.8.0-1035.38
Fix: upgrade to 6.8.0-1035.38
Ubuntu:24.04:LTS canonical linux-hwe-6.11 All versions
Ubuntu:24.04:LTS canonical linux-hwe-6.14 All versions
Ubuntu:24.04:LTS canonical linux-ibm < 6.8.0-1049.49
Fix: upgrade to 6.8.0-1049.49
Ubuntu:24.04:LTS canonical linux-lowlatency < 6.8.0-106.106.1
Fix: upgrade to 6.8.0-106.106.1
Ubuntu:24.04:LTS canonical linux-lowlatency-hwe-6.11 All versions
Ubuntu:24.04:LTS canonical linux-nvidia < 6.8.0-1049.52
Fix: upgrade to 6.8.0-1049.52
Ubuntu:24.04:LTS canonical linux-nvidia-6.11 All versions
Ubuntu:24.04:LTS canonical linux-nvidia-lowlatency < 6.8.0-1049.52.1
Fix: upgrade to 6.8.0-1049.52.1
Ubuntu:24.04:LTS canonical linux-oem-6.11 All versions
Ubuntu:24.04:LTS canonical linux-oem-6.14 All versions
Ubuntu:24.04:LTS canonical linux-oem-6.17 < 6.17.0-1011.11
Fix: upgrade to 6.17.0-1011.11
Ubuntu:24.04:LTS canonical linux-oem-6.8 All versions
Ubuntu:24.04:LTS canonical linux-oracle < 6.8.0-1047.48
Fix: upgrade to 6.8.0-1047.48
Ubuntu:24.04:LTS canonical linux-oracle-6.14 All versions
Ubuntu:24.04:LTS canonical linux-oracle-6.17 < 6.17.0-1007.7~24.04.1
Fix: upgrade to 6.17.0-1007.7~24.04.1
Ubuntu:24.04:LTS canonical linux-raspi < 6.8.0-1050.54
Fix: upgrade to 6.8.0-1050.54
Ubuntu:24.04:LTS canonical linux-raspi-realtime All versions
Ubuntu:24.04:LTS canonical linux-realtime All versions
Ubuntu:24.04:LTS canonical linux-riscv All versions
Ubuntu:24.04:LTS canonical linux-riscv-6.14 All versions
Ubuntu:24.04:LTS canonical linux-xilinx All versions
Ubuntu:Pro:FIPS-updates:24.04:LTS canonical linux-aws-fips < 6.8.0-1050.53+fips1
Fix: upgrade to 6.8.0-1050.53+fips1
Ubuntu:Pro:FIPS-updates:24.04:LTS canonical linux-azure-fips < 6.8.0-1052.58+fips1
Fix: upgrade to 6.8.0-1052.58+fips1
Ubuntu:Pro:FIPS-updates:24.04:LTS canonical linux-fips < 6.8.0-106.106+fips1
Fix: upgrade to 6.8.0-106.106+fips1
Ubuntu:Pro:FIPS-updates:24.04:LTS canonical linux-gcp-fips < 6.8.0-1052.55+fips1
Fix: upgrade to 6.8.0-1052.55+fips1
Ubuntu:Pro:Realtime:24.04:LTS canonical linux-raspi-realtime < 6.8.0-2040.41
Fix: upgrade to 6.8.0-2040.41
Ubuntu:Pro:Realtime:24.04:LTS canonical linux-realtime < 6.8.1-1045.46
Fix: upgrade to 6.8.1-1045.46
Ubuntu:Pro:Realtime:24.04:LTS canonical linux-realtime-6.14 All versions
Ubuntu:Pro:Realtime:24.04:LTS canonical linux-realtime-6.17 < 6.17.0-1006.7~24.04.1
Fix: upgrade to 6.17.0-1006.7~24.04.1
Ubuntu:25.10 canonical linux < 6.17.0-14.14
Fix: upgrade to 6.17.0-14.14
Ubuntu:25.10 canonical linux-aws < 6.17.0-1007.7
Fix: upgrade to 6.17.0-1007.7
Ubuntu:25.10 canonical linux-azure < 6.17.0-1008.8
Fix: upgrade to 6.17.0-1008.8
Ubuntu:25.10 canonical linux-azure-fde All versions
Ubuntu:25.10 canonical linux-gcp < 6.17.0-1007.7
Fix: upgrade to 6.17.0-1007.7
Ubuntu:25.10 canonical linux-oracle < 6.17.0-1007.7
Fix: upgrade to 6.17.0-1007.7
Ubuntu:25.10 canonical linux-raspi < 6.17.0-1008.8
Fix: upgrade to 6.17.0-1008.8
Ubuntu:25.10 canonical linux-realtime < 6.17.0-1006.7
Fix: upgrade to 6.17.0-1006.7
Ubuntu:25.10 canonical linux-riscv < 6.17.0-14.14.1
Fix: upgrade to 6.17.0-14.14.1
Original title
In the Linux kernel, the following vulnerability has been resolved: vsock: fix lock inversion in vsock_assign_transport() Syzbot reported a potential lock inversion deadlock between vsock_register_...
Original description
In the Linux kernel, the following vulnerability has been resolved: vsock: fix lock inversion in vsock_assign_transport() Syzbot reported a potential lock inversion deadlock between vsock_register_mutex and sk_lock-AF_VSOCK when vsock_linger() is called. The issue was introduced by commit 687aa0c5581b ("vsock: Fix transport_* TOCTOU") which added vsock_register_mutex locking in vsock_assign_transport() around the transport->release() call, that can call vsock_linger(). vsock_assign_transport() can be called with sk_lock held. vsock_linger() calls sk_wait_event() that temporarily releases and re-acquires sk_lock. During this window, if another thread hold vsock_register_mutex while trying to acquire sk_lock, a circular dependency is created. Fix this by releasing vsock_register_mutex before calling transport->release() and vsock_deassign_transport(). This is safe because we don't need to hold vsock_register_mutex while releasing the old transport, and we ensure the new transport won't disappear by obtaining a module reference first via try_module_get().
Published: 4 Dec 2025 · Updated: 7 May 2026 · First seen: 7 May 2026