Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
CVE Vulnerability Details :
CVE-2025-71233
PUBLISHED
More InfoOfficial Page
Assigner-Linux
Assigner Org ID-416baaa9-dc9f-4396-8d5f-8c081fb06d67
View Known Exploited Vulnerability (KEV) details
Published At-18 Feb, 2026 | 14:53
Updated At-18 Feb, 2026 | 14:53
Rejected At-
▼CVE Numbering Authority (CNA)
PCI: endpoint: Avoid creating sub-groups asynchronously

In the Linux kernel, the following vulnerability has been resolved: PCI: endpoint: Avoid creating sub-groups asynchronously The asynchronous creation of sub-groups by a delayed work could lead to a NULL pointer dereference when the driver directory is removed before the work completes. The crash can be easily reproduced with the following commands: # cd /sys/kernel/config/pci_ep/functions/pci_epf_test # for i in {1..20}; do mkdir test && rmdir test; done BUG: kernel NULL pointer dereference, address: 0000000000000088 ... Call Trace: configfs_register_group+0x3d/0x190 pci_epf_cfs_work+0x41/0x110 process_one_work+0x18f/0x350 worker_thread+0x25a/0x3a0 Fix this issue by using configfs_add_default_group() API which does not have the deadlock problem as configfs_register_group() and does not require the delayed work handler. [mani: slightly reworded the description and added stable list]

Affected Products
Vendor
Linux Kernel Organization, IncLinux
Product
Linux
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Program Files
  • drivers/pci/endpoint/pci-ep-cfs.c
Default Status
unaffected
Versions
Affected
  • From 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 before d9af3cf58bb4c8d6dea4166011c780756b1138b5 (git)
  • From 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 before 24a253c3aa6d9a2cde46158ce9782e023bfbf32d (git)
  • From 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 before 73cee890adafa2c219bb865356e08e7f82423fe5 (git)
Vendor
Linux Kernel Organization, IncLinux
Product
Linux
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Program Files
  • drivers/pci/endpoint/pci-ep-cfs.c
Default Status
affected
Versions
Unaffected
  • From 6.12.72 through 6.12.* (semver)
  • From 6.18.11 through 6.18.* (semver)
  • From 6.19.1 through 6.19.* (semver)
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://git.kernel.org/stable/c/d9af3cf58bb4c8d6dea4166011c780756b1138b5
N/A
https://git.kernel.org/stable/c/24a253c3aa6d9a2cde46158ce9782e023bfbf32d
N/A
https://git.kernel.org/stable/c/73cee890adafa2c219bb865356e08e7f82423fe5
N/A
Hyperlink: https://git.kernel.org/stable/c/d9af3cf58bb4c8d6dea4166011c780756b1138b5
Resource: N/A
Hyperlink: https://git.kernel.org/stable/c/24a253c3aa6d9a2cde46158ce9782e023bfbf32d
Resource: N/A
Hyperlink: https://git.kernel.org/stable/c/73cee890adafa2c219bb865356e08e7f82423fe5
Resource: N/A
Details not found