CVE-2025-21952

medium

Description

In the Linux kernel, the following vulnerability has been resolved: HID: corsair-void: Update power supply values with a unified work handler corsair_void_process_receiver can be called from an interrupt context, locking battery_mutex in it was causing a kernel panic. Fix it by moving the critical section into its own work, sharing this work with battery_add_work and battery_remove_work to remove the need for any locking

References

https://git.kernel.org/stable/c/de19c9dfb68f7c5791accc89047f92e952f57996

https://git.kernel.org/stable/c/0c28e4d1e10d2aae608094620bb386e6fd73d55e

Details

Source: Mitre, NVD

Published: 2025-04-01

Updated: 2025-04-01

Risk Information

CVSS v2

Base Score: 4.9

Vector: CVSS2#AV:L/AC:L/Au:N/C:N/I:N/A:C

Severity: Medium

CVSS v3

Base Score: 5.5

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Severity: Medium

EPSS

EPSS: 0.00018