Home/CVE/In the Linux kernel, the following vulnerability has been resolved: serial: mxs-auart: add spinlock around changing cts
CVE

CVE-2024-27000

In the Linux kernel, the following vulnerability has been resolved: serial: mxs-auart: add spinlock around changing cts

In the Linux kernel, the following vulnerability has been resolved: serial: mxs-auart: add spinlock around changing cts state The uart_handle_cts_change() function in serial_core expects the caller to hold uport-lock. For example, I have seen the below kernel splat, when the Bluetooth driver is loaded on an i.MX28 board. [ 85.119255] ------------[ cut here ]------------ [ 85.124413] WARNING: CPU: 0 PID: 27 at /drivers/tty/serial/serial_core.c:3453 uart_handle_cts_change+0xb4/0xec [ 85.134694] Modules linked in: hci_uart bluetooth ecdh_generic ecc wlcore_sdio configfs [ 85.143314] CPU: 0 PID: 27 Comm: kworker/u3:0 Not tainted 6.6.3-00021-gd62a2f068f92 #1 [ 85.151396] Hardware name: Freescale MXS (Device Tree) [ 85.156679] Workqueue: hci0 hci_power_on [bluetooth] (...) [ 85.191765] uart_handle_cts_change from mxs_auart_irq_handle+0x380/0x3f4 [ 85.198787] mxs_auart_irq_handle from __handle_irq_event_percpu+0x88/0x210 (...)

HIGH · CVSS 7.8 EPSS 0.00021
Schedule remediation
  • CVSS base score ≥ 7.0
Sigma rules0 YARA rules0

Affected Products & Versions

10
linux kernel>= 3.18 and < 4.19.313
linux kernel>= 4.20 and < 5.4.275
linux kernel>= 5.5 and < 5.10.216
linux kernel>= 5.11 and < 5.15.158
linux kernel>= 5.16 and < 6.1.88
linux kernel>= 6.2 and < 6.6.29
linux kernel>= 6.7 and < 6.8.8
linux kernelall versions

Scoring & Timeline

7.8
HIGH · CVSS v3.1 · 416baaa9-dc9f-4396-8d5f-8c081fb06d67
View on NVD
Attack Vector
Network Adjacent Local Physical
Attack Complexity
Low High
Privileges Required
None Low High
User Interaction
None Required
Scope
Unchanged Changed
Confidentiality
None Low High
Integrity
None Low High
Availability
None Low High
Published to NVD01 May 2024 · 06:15 AM
CVSS VectorCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
SSVC triage · cisa-vulnrichment
Exploitation
none
Automatable
no
Technical impact
partial
SSVC asks the questions that actually drive patch urgency: is it being exploited, can attacks be automated, and how total is the impact.

Vendor Advisories

30
siemens-csafSSA-613116
suse-csafSUSE-SU-2025:20166-1
suse-csafSUSE-SU-2025:20249-1
suse-csafSUSE-SU-2025:20008-1
suse-csafSUSE-SU-2025:20028-1
🔗

References & Sources

12
Source URLs (vendor pages, mailing lists, write-ups). Exploit/PoC links are in their own section above to avoid duplication.
https://git.kernel.org/stable/c/0dc0637e6b16158af85945425821bfd0151adb37Patch
https://git.kernel.org/stable/c/21535ef0ac1945080198fe3e4347ea498205c99aPatch
https://git.kernel.org/stable/c/2c9b943e9924cf1269e44289bc5e60e51b0f5270Patch
https://git.kernel.org/stable/c/479244d68f5d94f3903eced52b093c1e01ddb495Patch
https://git.kernel.org/stable/c/54c4ec5f8c471b7c1137a1f769648549c423c026Patch
https://git.kernel.org/stable/c/56434e295bd446142025913bfdf1587f5e1970adPatch
Intelligence Graph · click any node to traverse
CVETechnique ActorTool Family
drag to reposition · click any node to traverse · button top-right enlarges
External lookups - second-class, for what we don’t hold ourselves
NVDCVE.orgCISAVulnersExploit-DBGitHub PoCVulnCheck KEVGreyNoise
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh  ·  Open-source threat intelligence platform  ·  100+ authoritative sources  ·  Every fact traces to its origin