Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: Revert "fs/ntfs3: Replace inode_trylock with inode_lock" This reverts commit 69505fe98f198ee813898cbcaf6770949636430b. Initially, conditional lock acquisition was removed to fix an xfstest bug that was observed during internal testing. The deadlock reported by syzbot is resolved by reintroducing conditional acquisition. The xfstest bug no longer occurs on kernel version 6.16-rc1 during internal testing. I assume that changes in other modules may have contributed to this.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | >= 5.15.165, < 5.15.190 |
| Debian | Debian Linux | 11.0 |
References
- https://git.kernel.org/stable/c/1903a6c1f2818154f6bc87bceaaecafa92b6ac5cPatch
- https://git.kernel.org/stable/c/7ce6f83ca9d52c9245b7a017466fc4baa1241b0bPatch
- https://git.kernel.org/stable/c/a49f0abd8959048af18c6c690b065eb0d65b2d21Patch
- https://git.kernel.org/stable/c/a936be9b5f51c4d23f66fb673e9068c6b08104a4Patch
- https://git.kernel.org/stable/c/b356ee013a79e7e3147bfe065de376706c5d2ee9Patch
- https://git.kernel.org/stable/c/bd20733746263acaaf2a21881665db27ee4303d5Patch
- https://git.kernel.org/stable/c/bec8109f957a6e193e52d1728799994c8005ca83Patch
- https://lists.debian.org/debian-lts-announce/2025/10/msg00008.htmlMailing ListThird Party Advisory
FAQ
What is CVE-2025-39734?
CVE-2025-39734 is a vulnerability with a CVSS score of 5.5 (MEDIUM). In the Linux kernel, the following vulnerability has been resolved: Revert "fs/ntfs3: Replace inode_trylock with inode_lock" This reverts commit 69505fe98f198ee813898cbcaf6770949636430b. Initially,...
How severe is CVE-2025-39734?
CVE-2025-39734 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2025-39734?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel, Debian Debian Linux.