Concurrence Race Condition in Linux Kernel's UART Driver
CVE-2025-38262

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
9 July 2025

What is CVE-2025-38262?

A race condition vulnerability in the Linux kernel's UART driver can occur during the probing of multiple instances of UART devices. This leads to one thread calling the uart_register_driver function, which allocates memory for 'uart_state', while another instance can bypass the registration process. This causes a null pointer dereference during a call to uart_add_one_port, resulting in a kernel panic. To mitigate this issue, it's recommended to move the uart driver registration into the init function, ensuring that the driver is fully initialized before any probing takes place.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux 238b8721a554a33a451a3f13bdb5be8fe5cfc927 < 5015eed450005bab6e5cb6810f7a62eab0434fc4

Linux 238b8721a554a33a451a3f13bdb5be8fe5cfc927 < 9c905fdbba68a6d73d39a6b7de9b9f0d6c46df87

Linux 238b8721a554a33a451a3f13bdb5be8fe5cfc927 < 6db06aaea07bb7c8e33a425cf7b98bf29ee6056e

References

https://git.kernel.org/stable/c/5015eed450005bab6e5cb6810...
https://git.kernel.org/stable/c/9c905fdbba68a6d73d39a6b7d...
https://git.kernel.org/stable/c/6db06aaea07bb7c8e33a425cf...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.