CVE-2025-38633
- Source
- https://cve.org/CVERecord?id=CVE-2025-38633
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-38633.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2025-38633
- Downstream
- Published
- 2025-08-22T16:00:41.434Z
- Modified
- 2026-04-02T12:48:03.520340Z
- Summary
- clk: spacemit: mark K1 pll1_d8 as critical
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
clk: spacemit: mark K1 pll1_d8 as critical
The pll1d8 clock is enabled by the boot loader, and is ultimately a parent for numerous clocks, including those used by APB and AXI buses. Guodong Xu discovered that this clock got disabled while responding to getting -EPROBEDEFER when requesting a reset controller.
The needed clock (CLKDMA, along with its parents) had already been enabled. To respond to the probe deferral return, the CLKDMA clock was disabled, and this led to parent clocks also reducing their enable count. When the enable count for pll1_d8 was decremented it became 0, which caused it to be disabled. This led to a system hang.
Marking that clock critical resolves this by preventing it from being disabled.
Define a new macro CCUFACTORGATEDEFINE() to allow clock flags to be supplied for a CCUFACTOR_GATE clock.
- Database specific
{ "cna_assigner": "Linux", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/38xxx/CVE-2025-38633.json" }- References
-
- https://git.kernel.org/stable/c/10948c00e548e9ad2ce9d765baf26dce2d9b806b
- https://git.kernel.org/stable/c/7554729de27daf6d54bcf8689d863bbe267828bf
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/38xxx/CVE-2025-38633.json
- https://nvd.nist.gov/vuln/detail/CVE-2025-38633
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git