Linux Kernel MIPI I3C HCI DMA Dequeue Race Condition Vulnerability

A race condition vulnerability has been identified in the Linux kernel's MIPI I3C Host Controller Interface (HCI) driver) within the DMA dequeue process. The vulnerability arises because the function responsible for handling timeouts in transfers is not properly synchronized, allowing multiple instances to interfere with each other. This can lead to unexpected behavior in managing the transfer ring, such as stopping or restarting it at inappropriate times. The issue has been addressed by adding a mutex to ensure that the dequeue function is serialized and operates correctly, preventing concurrent executions from conflicting.

Impact

The vulnerability could cause improper management of the DMA transfer ring, leading to potential data transfer issues or timeouts not being handled correctly, which could disrupt the normal operation of devices using the I3C protocol.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been fixed. Instructions for downloading the patched version are available on the official Linux kernel website.