What is GHSA-6grr-36f8-j7pv?

GHSA-6grr-36f8-j7pv is a security advisory published by GitHub Security Advisories with Medium severity. In the Linux kernel, the following vulnerability has been resolved: serial: 8250: Fix TX...

Which CVE IDs does GHSA-6grr-36f8-j7pv cover?

GHSA-6grr-36f8-j7pv covers the following CVE IDs: CVE-2026-43061. Each CVE has its own detail page on EchelonGraph Pulse with the synthesized EG score.

What is the CVSS v3 score of GHSA-6grr-36f8-j7pv?

GHSA-6grr-36f8-j7pv has a CVSS v3 base score of 5.5, published by GitHub Security Advisories.

GHSA-6grr-36f8-j7pvMediumCVSS 5.5

In the Linux kernel, the following vulnerability has been resolved: serial: 8250: Fix TX...

Vendor

GitHub Security Advisories

Published

May 5, 2026

Last Modified

May 29, 2026

🔗 CVE IDs covered (1)

CVE-2026-43061 →

📋 Description

In the Linux kernel, the following vulnerability has been resolved:

serial: 8250: Fix TX deadlock when using DMA

dmaengine_terminate_async does not guarantee that the __dma_tx_complete callback will run. The callback is currently the only place where dma->tx_running gets cleared. If the transaction is canceled and the callback never runs, then dma->tx_running will never get cleared and we will never schedule new TX DMA transactions again.

This change makes it so we clear dma->tx_running after we terminate the DMA transaction. This is "safe" because serial8250_tx_dma_flush is holding the UART port lock. The first thing the callback does is also grab the UART port lock, so access to dma->tx_running is serialized.

🔗 CVE IDs covered (1)

📋 Description

🔗 References (10)