PT-2025-9011 · Linux+7 · Linux Kernel+7

Published

2025-01-10

·

Updated

2026-04-20

·

CVE-2025-21820

CVSS v3.1

5.5

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description A deadlock situation can occur in the Linux kernel due to a circular locking dependency. This issue arises when the cdns uart console write function attempts to take the port lock before the port->sysrq flag is set, potentially leading to a deadlock. The problem is caused by the cdns uart isr function and printk function accessing the uart port lock and console lock in a way that creates a circular dependency.
Recommendations To resolve this issue, the sysrq handling should be split into two parts, using the prepare helper under the port lock and deferring handling until the lock is released. This approach avoids the circular locking dependency and prevents the deadlock situation.
At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Improper Locking

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-667

Related Identifiers

ALT-PU-2025-12647
AZL-57749
BDU:2025-12264
CVE-2025-21820
DLA-4102-1
OESA-2025-1371
OESA-2025-1372
OPENSUSE-SU-2025_1177-1
OPENSUSE-SU-2025_1178-1
OPENSUSE-SU-2025_1180-1
SUSE-SU-2025:01919-1
SUSE-SU-2025:1177-1
SUSE-SU-2025:1178-1
SUSE-SU-2025:1180-1
SUSE-SU-2025:20190-1
SUSE-SU-2025:20192-1
SUSE-SU-2025:20260-1
SUSE-SU-2025:20270-1
SUSE-SU-2025_1177-1
SUSE-SU-2025_1178-1
SUSE-SU-2025_1180-1
USN-7510-1
USN-7510-2
USN-7510-3
USN-7510-4
USN-7510-5
USN-7510-6
USN-7510-7
USN-7510-8
USN-7511-1
USN-7511-2
USN-7511-3
USN-7512-1
USN-7521-1
USN-7521-2
USN-7521-3
USN-7593-1
USN-7602-1
USN-7651-1
USN-7651-2
USN-7651-3
USN-7651-4
USN-7651-5
USN-7651-6
USN-7652-1
USN-7653-1
USN-7737-1

Affected Products

Alt Linux
Astra Linux
Debian
Linuxmint
Linux Kernel
Red Os
Suse
Ubuntu