Circular Locking Dependency in Xilinx UARTPS Driver for Linux Kernel
CVE-2025-21820

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 27 February 2025

Summary

A vulnerability in the Xilinx UARTPS driver of the Linux kernel has been identified, stemming from a circular locking dependency during sysrq handling. The issue occurs when the cdns_uart_console_write function attempts to acquire the port lock without the proper state check on port->sysrq, leading to potential deadlocks. The fix introduces a split in sysrq processing to ensure that the port lock is only acquired when necessary, thereby preventing such deadlocks and improving overall system stability.

Affected Version(s)

Linux 74ea66d4ca061a3cd4c0e924e51b60e924644852

Linux 74ea66d4ca061a3cd4c0e924e51b60e924644852 < 8ea0e7b3d7b8f2f0fc9db491ff22a0abe120801c

Linux 74ea66d4ca061a3cd4c0e924e51b60e924644852 < 9b88a7c4584ba67267a051069b8abe44fc9595b2

References

https://git.kernel.org/stable/c/de5bd24197bd9ee37ec1e379a...

https://git.kernel.org/stable/c/8ea0e7b3d7b8f2f0fc9db491f...

https://git.kernel.org/stable/c/9b88a7c4584ba67267a051069...

Timeline

Vulnerability published
Feb 27, 2025
Vulnerability Reserved
Dec 29, 2024