CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!
CVE-2024-40967: serial: imx: Introduce timeout when waiting on transmitter empty
Description
In the Linux kernel, the following vulnerability has been resolved:
serial: imx: Introduce timeout when waiting on transmitter empty
By waiting at most 1 second for USR2_TXDC to be set, we avoid a potential
deadlock.
In case of the timeout, there is not much we can do, so we simply ignore
the transmitter state and optimistically try to continue.
Classification
CVE ID: CVE-2024-40967
Affected Products
Vendor: Linux
Product: Linux
Exploit Prediction Scoring System (EPSS)
EPSS Score: 0.04% (probability of being exploited)
EPSS Percentile: 5.08% (scored less or equal to compared to others)
EPSS Date: 2025-02-04 (when was this score calculated)
References
https://git.kernel.org/stable/c/7f2b9ab6d0b26f16cd38dd9fd91d51899635f7c7https://git.kernel.org/stable/c/7f9e70c68b7ace0141fe3bc94bf7b61296b71916
https://git.kernel.org/stable/c/982ae3376c4c91590d38dc8a676c10f7df048a44
https://git.kernel.org/stable/c/53b2c95547427c358f45515a9f144efee95e3701
https://git.kernel.org/stable/c/e533e4c62e9993e62e947ae9bbec34e4c7ae81c2