{"id":"CVE-2025-68336","summary":"locking/spinlock/debug: Fix data-race in do_raw_write_lock","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nlocking/spinlock/debug: Fix data-race in do_raw_write_lock\n\nKCSAN reports:\n\nBUG: KCSAN: data-race in do_raw_write_lock / do_raw_write_lock\n\nwrite (marked) to 0xffff800009cf504c of 4 bytes by task 1102 on cpu 1:\n do_raw_write_lock+0x120/0x204\n _raw_write_lock_irq\n do_exit\n call_usermodehelper_exec_async\n ret_from_fork\n\nread to 0xffff800009cf504c of 4 bytes by task 1103 on cpu 0:\n do_raw_write_lock+0x88/0x204\n _raw_write_lock_irq\n do_exit\n call_usermodehelper_exec_async\n ret_from_fork\n\nvalue changed: 0xffffffff -\u003e 0x00000001\n\nReported by Kernel Concurrency Sanitizer on:\nCPU: 0 PID: 1103 Comm: kworker/u4:1 6.1.111\n\nCommit 1a365e822372 (\"locking/spinlock/debug: Fix various data races\") has\nadressed most of these races, but seems to be not consistent/not complete.\n\n\u003eFrom do_raw_write_lock() only debug_write_lock_after() part has been\nconverted to WRITE_ONCE(), but not debug_write_lock_before() part.\nDo it now.","modified":"2026-04-02T13:03:34.800009Z","published":"2025-12-22T16:14:13.425Z","related":["openSUSE-SU-2026:10039-1","openSUSE-SU-2026:10301-1"],"database_specific":{"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/68xxx/CVE-2025-68336.json","cna_assigner":"Linux"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/16b3590c0e1e615757dade098c8fbc0d4f040c76"},{"type":"WEB","url":"https://git.kernel.org/stable/c/396a9270a7b90886be501611b13aa636f2e8c703"},{"type":"WEB","url":"https://git.kernel.org/stable/c/39d2ef113416f1a4205b03fb0aa2e428d1412c77"},{"type":"WEB","url":"https://git.kernel.org/stable/c/8e5b2cf10844402054b52b489b525dc30cc16908"},{"type":"WEB","url":"https://git.kernel.org/stable/c/93bd23524d63deb80fb85beb2e43fafeb1043d0f"},{"type":"WEB","url":"https://git.kernel.org/stable/c/b163a5e8c703201c905d6ec7920ed79d167e8442"},{"type":"WEB","url":"https://git.kernel.org/stable/c/c14ecb555c3ee80eeb030a4e46d00e679537f03a"},{"type":"WEB","url":"https://git.kernel.org/stable/c/c228cb699a07a5f2d596d186bc5c314c99bb8bbf"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/68xxx/CVE-2025-68336.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-68336"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"1a365e822372ba24c9da0822bc583894f6f3d821"},{"fixed":"8e5b2cf10844402054b52b489b525dc30cc16908"},{"fixed":"c228cb699a07a5f2d596d186bc5c314c99bb8bbf"},{"fixed":"93bd23524d63deb80fb85beb2e43fafeb1043d0f"},{"fixed":"39d2ef113416f1a4205b03fb0aa2e428d1412c77"},{"fixed":"b163a5e8c703201c905d6ec7920ed79d167e8442"},{"fixed":"16b3590c0e1e615757dade098c8fbc0d4f040c76"},{"fixed":"396a9270a7b90886be501611b13aa636f2e8c703"},{"fixed":"c14ecb555c3ee80eeb030a4e46d00e679537f03a"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"0"},{"last_affected":"3106fb78d3579c8e9c9b3040f7f7841981919624"},{"last_affected":"c0911024ff927ba5c4786b507004cb615be1d776"},{"last_affected":"09226e5c38639437565af01e6009a9286a351d04"},{"last_affected":"c7673f01604fa722b9d7c1e29e17cec1b8ae09c5"},{"last_affected":"c120c3dbeb76305235c8e557f84d9e2d7d0f5933"}]}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-68336.json"}},{"package":{"name":"Kernel","ecosystem":"Linux"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"5.5.0"},{"fixed":"5.10.248"}]},{"type":"ECOSYSTEM","events":[{"introduced":"5.11.0"},{"fixed":"5.15.198"}]},{"type":"ECOSYSTEM","events":[{"introduced":"5.16.0"},{"fixed":"6.1.160"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.2.0"},{"fixed":"6.6.120"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.7.0"},{"fixed":"6.12.62"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.13.0"},{"fixed":"6.17.12"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.18.0"},{"fixed":"6.18.1"}]}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-68336.json"}}],"schema_version":"1.7.5"}