CVE-2026-43061
Published: May 5, 2026
Modified: May 23, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: serial: 8250: Fix TX deadlock when using DMA `dmaengine_terminate_async` does not guarantee that the `__dma_tx_complete` callback will run. The callback is currently the only place where `dma->tx_running` gets cleared. If the transaction is canceled and the callback never runs, then `dma->tx_running` will never get cleared and we will never schedule new TX DMA transactions again. This change makes it so we clear `dma->tx_running` after we terminate the DMA transaction. This is "safe" because `serial8250_tx_dma_flush` is holding the UART port lock. The first thing the callback does is also grab the UART port lock, so access to `dma->tx_running` is serialized.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 7c47e637dfadfbc691dd297b91d81ef939ca2080 - < 8190f9ab6ad90cb97652adbebd238b874a4ef70daffected bf3f395b9c37956eca866c9e1679769ed7dcce68 - < 79a19bd936bb35f56ef0ccab1b3b59ebce8c762daffected d470522c597b73e63cca04f3012aec28185113b7 - < f76d91271bcacbd759a2e4ee3ea61faa6a727ccfaffected 5e00346deb7bf40a4cf70e3716ac8e9a2409eb55 - < d2719a0a9c3439abf67843a5504b7afccd9ded93affected c8a52c772c7c6de72257a435bcad03d3bb914a70 - < 2a72403b985aea6b4aac3171830492f9a387f9e1+12 more versions |
Linux | Linux | affected 6.14unaffected 0 - < 6.14unaffected 5.10.253 - <= 5.10.*unaffected 5.15.203 - <= 5.15.*unaffected 6.1.167 - <= 6.1.*+5 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now