5.5

CVE-2026-43061

serial: 8250: Fix TX deadlock when using DMA

In the Linux kernel, the following vulnerability has been resolved:

serial: 8250: Fix TX deadlock when using DMA

`dmaengine_terminate_async` does not guarantee that the
`__dma_tx_complete` callback will run. The callback is currently the
only place where `dma->tx_running` gets cleared. If the transaction is
canceled and the callback never runs, then `dma->tx_running` will never
get cleared and we will never schedule new TX DMA transactions again.

This change makes it so we clear `dma->tx_running` after we terminate
the DMA transaction. This is "safe" because `serial8250_tx_dma_flush`
is holding the UART port lock. The first thing the callback does is also
grab the UART port lock, so access to `dma->tx_running` is serialized.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 5.4.291 < 5.5
LinuxLinux Kernel Version >= 5.10.235 < 5.10.253
LinuxLinux Kernel Version >= 5.15.179 < 5.15.203
LinuxLinux Kernel Version >= 6.1.129 < 6.1.167
LinuxLinux Kernel Version >= 6.6.79 < 6.6.130
LinuxLinux Kernel Version >= 6.12.16 < 6.12.78
LinuxLinux Kernel Version >= 6.13.4 < 6.14
LinuxLinux Kernel Version >= 6.14.1 < 6.18.20
LinuxLinux Kernel Version >= 6.19 < 6.19.10
LinuxLinux Kernel Version6.14 Update-
LinuxLinux Kernel Version6.14 Updaterc3
LinuxLinux Kernel Version6.14 Updaterc4
LinuxLinux Kernel Version6.14 Updaterc5
LinuxLinux Kernel Version6.14 Updaterc6
LinuxLinux Kernel Version6.14 Updaterc7
LinuxLinux Kernel Version7.0 Updaterc1
LinuxLinux Kernel Version7.0 Updaterc2
LinuxLinux Kernel Version7.0 Updaterc3
LinuxLinux Kernel Version7.0 Updaterc4
LinuxLinux Kernel Version7.0 Updaterc5
LinuxLinux Kernel Version7.0 Updaterc6
LinuxLinux Kernel Version7.0 Updaterc7
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.09% 0.006
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CWE-667 Improper Locking

The product does not properly acquire or release a lock on a resource, leading to unexpected resource state changes and behaviors.

https://git.kernel.org/stable/c/2a72403b985aea6b4aac3171830492f9a387f9e1
Patch
https://git.kernel.org/stable/c/5f6b17562f03fc65c7d3474ef8f1959b19d1ca41
Patch
https://git.kernel.org/stable/c/79a19bd936bb35f56ef0ccab1b3b59ebce8c762d
Patch
https://git.kernel.org/stable/c/8190f9ab6ad90cb97652adbebd238b874a4ef70d
Patch
https://git.kernel.org/stable/c/a424a34b8faddf97b5af41689087e7a230f79ba7
Patch
https://git.kernel.org/stable/c/b5ad887339503103d0fbe9827b16ad287597c275
Patch
https://git.kernel.org/stable/c/d2719a0a9c3439abf67843a5504b7afccd9ded93
Patch
https://git.kernel.org/stable/c/f76d91271bcacbd759a2e4ee3ea61faa6a727ccf
Patch