CVE-2024-44951

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue is related to a regression introduced by a commit that changed the EFR locking to operate on each channel instead of chip-wise. This regression causes the Tx buffer data on one channel to be corrupted with data from another channel when a packet is received on one channel at almost the same time as a packet is about to be transmitted on the other channel. The problem is due to the EFR lock being used not only to protect the EFR registers access but also to protect access to the shared data buffer. To fix this regression, the solution involves switching to kfifo out linear ptr() in sc16is7xx handle tx() to eliminate the need for a shared Rx/Tx buffer and replacing the chip-wise Rx buffer with a separate Rx buffer for each channel.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.