CVE-2026-43353
Published: May 8, 2026
Modified: May 11, 2026
CVSS v3.1
7.8
Description
In the Linux kernel, the following vulnerability has been resolved: i3c: mipi-i3c-hci: Fix race in DMA ring dequeue The HCI DMA dequeue path (hci_dma_dequeue_xfer()) may be invoked for multiple transfers that timeout around the same time. However, the function is not serialized and can race with itself. When a timeout occurs, hci_dma_dequeue_xfer() stops the ring, processes incomplete transfers, and then restarts the ring. If another timeout triggers a parallel call into the same function, the two instances may interfere with each other - stopping or restarting the ring at unexpected times. Add a mutex so that hci_dma_dequeue_xfer() is serialized with respect to itself.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 9ad9a52cce2828d932ae9495181e3d6414f72c07 - < b684b420a5bb0ea1b0e13abfdb8ce41c5266e62eaffected 9ad9a52cce2828d932ae9495181e3d6414f72c07 - < 4faa1e9c67a2229f6749190aedaf88ce0391efd2affected 9ad9a52cce2828d932ae9495181e3d6414f72c07 - < 1dca8aee80eea76d2aae21265de5dd64f6ba0f09 |
Linux | Linux | affected 5.11unaffected 0 - < 5.11unaffected 6.18.19 - <= 6.18.*unaffected 6.19.9 - <= 6.19.*unaffected 7.0 - <= * |
CVSS v3.1 Details
CVSS v3.1 Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now