logo_clicknbuy.png

CVE-2025-39712 – media: mt9m114: Fix deadlock in get_frame_interval/set_frame_interval

The following table lists the changes that have been made to the
CVE-2025-39712 vulnerability over time.

Vulnerability history details can be useful for understanding the evolution
of a vulnerability, and for identifying the most recent changes that may
impact the vulnerability’s severity, exploitability, or other characteristics.

  • New CVE Received
    by 416baaa9-dc9f-4396-8d5f-8c081fb06d67

    Sep. 05, 2025

    Action Type Old Value New Value
    Added Description In the Linux kernel, the following vulnerability has been resolved:

    media: mt9m114: Fix deadlock in get_frame_interval/set_frame_interval

    Getting / Setting the frame interval using the V4L2 subdev pad ops
    get_frame_interval/set_frame_interval causes a deadlock, as the
    subdev state is locked in the [1] but also in the driver itself.

    In [2] it’s described that the caller is responsible to acquire and
    release the lock in this case. Therefore, acquiring the lock in the
    driver is wrong.

    Remove the lock acquisitions/releases from mt9m114_ifp_get_frame_interval()
    and mt9m114_ifp_set_frame_interval().

    [1] drivers/media/v4l2-core/v4l2-subdev.c – line 1129
    [2] Documentation/driver-api/media/v4l2-subdev.rst
    Added Reference https://git.kernel.org/stable/c/0d23b548d71e5d76955fdf1d73addd8f6494f602
    Added Reference https://git.kernel.org/stable/c/298d1471cf83d5a2a05970e41822a2403f451086
    Added Reference https://git.kernel.org/stable/c/41b97490a1656bdc7038d6345a84b08d45deafc6
Share the Post:

Related Posts