logo

Multiple Locks of a Critical Resource

Incomplete Base
Structure: Simple
Description

This vulnerability occurs when a critical resource, such as a file, data structure, or connection, is locked more times than the software logic intended, putting the system into an unstable or unresponsive state.

Extended Description

In concurrent software, like multi-threaded applications or servers, each extra lock on a critical resource consumes system capacity. For pooled resources managed by semaphores, this drains the available pool, which can cause severe performance degradation or a complete denial of service. An attacker can often exploit this flaw to exhaust resources, making it functionally similar to an unrestricted lock attack. With binary locks (like mutexes), the problem is one of progress. Since the lock is already held by the current process, any subsequent attempt by the same process to lock it again will typically fail or block indefinitely. This creates a deadlock scenario where the software halts, waiting for a lock it can never acquire, causing the affected component to freeze.
Common Consequences 1
Scope: AvailabilityIntegrity

Impact: DoS: Resource Consumption (CPU)DoS: Crash, Exit, or RestartUnexpected State
Potential Mitigations 1
Phase: Implementation
When locking and unlocking a resource, try to be sure that all control paths through the code in which the resource is locked one or more times correspond to exactly as many unlocks. If the software acquires a lock and then determines it is not able to perform its intended behavior, be sure to release the lock(s) before waiting for conditions to improve. Reacquire the lock(s) before trying again.
Modes of Introduction
Implementation
Related Weaknesses
ChildOf: Improper Locking (CWE-667)
ChildOf: Multiple Operations on Resource in Single-Operation Context (CWE-675)
ChildOf: Improper Synchronization (CWE-662)
ChildOf: Improper Synchronization (CWE-662)
Taxonomy Mapping
  • Software Fault Patterns
Notes
MaintenanceAn alternate way to think about this weakness is as an imbalance between the number of locks / unlocks in the control flow. Over the course of execution, if each lock call is not followed by a subsequent call to unlock in a reasonable amount of time, then system performance may be degraded or at least operating at less than peak levels if there is competition for the locks. This entry may need to be modified to reflect these concepts in the future.