Fixed
Created: Jul 28, 2025
Updated: Aug 10, 2025
Resolved Date: Aug 10, 2025
Found In Version: 10.24.33.1
Severity: Standard
Applicable for: Wind River Linux LTS 24
Component/s: Kernel
In the Linux kernel, the following vulnerability has been resolved:EOL][EOL]usb: gadget: u_serial: Fix race condition in TTY wakeup[EOL][EOL]A race condition occurs when gs_start_io() calls either gs_start_rx() or[EOL]gs_start_tx(), as those functions briefly drop the port_lock for[EOL]usb_ep_queue(). This allows gs_close() and gserial_disconnect() to clear[EOL]port.tty and port_usb, respectively.[EOL][EOL]Use the null-safe TTY Port helper function to wake up TTY.[EOL][EOL]Example[EOL] CPU1:\t\t\t CPU2:[EOL] gserial_connect() // lock[EOL] \t\t\t gs_close() // await lock[EOL] gs_start_rx() // unlock[EOL] usb_ep_queue()[EOL] \t\t\t gs_close() // lock, reset port.tty and unlock[EOL] gs_start_rx() // lock[EOL] tty_wakeup() // NPE
CREATE(Triage):(User=admin) [CVE-2025-38448 (https://nvd.nist.gov/vuln/detail/CVE-2025-38448)
