-
CVE-2026-23287
- EPSS 0.04%
- Veröffentlicht 25.03.2026 10:26:46
- Zuletzt bearbeitet 25.03.2026 15:41:33
- Quelle 416baaa9-dc9f-4396-8d5f-8c081f
- CVE-Watchlists
- Unerledigt
irqchip/sifive-plic: Fix frozen interrupt due to affinity setting
In the Linux kernel, the following vulnerability has been resolved:
irqchip/sifive-plic: Fix frozen interrupt due to affinity setting
PLIC ignores interrupt completion message for disabled interrupt, explained
by the specification:
The PLIC signals it has completed executing an interrupt handler by
writing the interrupt ID it received from the claim to the
claim/complete register. The PLIC does not check whether the completion
ID is the same as the last claim ID for that target. If the completion
ID does not match an interrupt source that is currently enabled for
the target, the completion is silently ignored.
This caused problems in the past, because an interrupt can be disabled
while still being handled and plic_irq_eoi() had no effect. That was fixed
by checking if the interrupt is disabled, and if so enable it, before
sending the completion message. That check is done with irqd_irq_disabled().
However, that is not sufficient because the enable bit for the handling
hart can be zero despite irqd_irq_disabled(d) being false. This can happen
when affinity setting is changed while a hart is still handling the
interrupt.
This problem is easily reproducible by dumping a large file to uart (which
generates lots of interrupts) and at the same time keep changing the uart
interrupt's affinity setting. The uart port becomes frozen almost
instantaneously.
Fix this by checking PLIC's enable bit instead of irqd_irq_disabled().Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).
HerstellerLinux
≫
Produkt
Linux
Default Statusunaffected
Version
cc9f04f9a84f745949e325661550ed14bd0ff322
Version <
8942fb1a5bc2dcbd88f7e656d109d42f778f298f
Status
affected
Version
cc9f04f9a84f745949e325661550ed14bd0ff322
Version <
2edbd173309165d103be6c73bd83e459dc45ae7b
Status
affected
Version
cc9f04f9a84f745949e325661550ed14bd0ff322
Version <
686eb378a4a51aa967e08337dd59daade16aec0f
Status
affected
Version
cc9f04f9a84f745949e325661550ed14bd0ff322
Version <
1883332bf21feb8871af09daf604fc4836a76925
Status
affected
Version
cc9f04f9a84f745949e325661550ed14bd0ff322
Version <
f611791a927141d05d7030607dea6372311c1413
Status
affected
Version
cc9f04f9a84f745949e325661550ed14bd0ff322
Version <
1072020685f4b81f6efad3b412cdae0bd62bb043
Status
affected
HerstellerLinux
≫
Produkt
Linux
Default Statusaffected
Version
5.1
Status
affected
Version
0
Version <
5.1
Status
unaffected
Version <=
6.1.*
Version
6.1.167
Status
unaffected
Version <=
6.6.*
Version
6.6.130
Status
unaffected
Version <=
6.12.*
Version
6.12.77
Status
unaffected
Version <=
6.18.*
Version
6.18.17
Status
unaffected
Version <=
6.19.*
Version
6.19.7
Status
unaffected
Version <=
*
Version
7.0
Status
unaffected
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. 
Login
Login| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.04% | 0.102 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|