CVE-2023-54220 - Vulnerability Details

- serial: 8250: Fix oops for port->pm on uart_change_pm()

Description

In the Linux kernel, the following vulnerability has been resolved:

serial: 8250: Fix oops for port->pm on uart_change_pm()

Unloading a hardware specific 8250 driver can produce error "Unable to
handle kernel paging request at virtual address" about ten seconds after
unloading the driver. This happens on uart_hangup() calling
uart_change_pm().

Turns out commit 04e82793f068 ("serial: 8250: Reinit port->pm on port
specific driver unbind") was only a partial fix. If the hardware specific
driver has initialized port->pm function, we need to clear port->pm too.
Just reinitializing port->ops does not do this. Otherwise serial8250_pm()
will call port->pm() instead of serial8250_do_pm().

Published: 2025-12-30

Score: 5.5 Medium

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Analysis and contextual insights are available on OpenCVE Cloud.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Linux

unaffected

Version	Status	Constraints
`490bf37eaabb0a857ed1ae8e75d8854e41662f1c`	affected	< 66f3e55960698c874b0598277913b478ecd29573
`c9e080c3005fd183c56ff8f4d75edb5da0765d2c`	affected	< 720a297b334e85d34099e83d1f375b92c3efedd6
`d5cd2928d31042a7c0a01464f9a8d95be736421d`	affected	< b653289ca6460a6552c8590b75dfa84a0140a46b
`2c86a1305c1406f45ea780d06953c484ea1d9e6e`	affected	< bd70d0b28010d560a8be96b44fea86fe2ba016ae
`1ba5594739d858e524ff0f398ee1ebfe0a8b9d41`	affected	< 18e27df4f2b4e257c317ba8076f31a888f6cc64b
`af4d6dbb1a92ea424ad1ba1d0c88c7fa2345d872`	affected	< 0c05493341d6f2097f75f0a5dbb7b53a9e8c5f6c
`04e82793f068d2f0ffe62fcea03d007a8cdc16a7`	affected	< 375806616f8c772c33d40e112530887b37c1a816
`04e82793f068d2f0ffe62fcea03d007a8cdc16a7`	affected	< dfe2aeb226fd5e19b0ee795f4f6ed8bc494c1534
`8e596aed5f2f98cf3e6e98d6fe1d689f4a319308`	affected	—
`4.14.316`	affected	< 4.14.324
`4.19.284`	affected	< 4.19.293
`5.4.244`	affected	< 5.4.255
`5.10.181`	affected	< 5.10.192
`5.15.113`	affected	< 5.15.128
`6.1.30`	affected	< 6.1.47
`6.3.4`	affected	< 6.4

Linux

affected

Version	Status	Constraints
`6.4`	affected	—
`0`	unaffected	< 6.4
`4.14.324`	unaffected	≤ 4.14.*
`4.19.293`	unaffected	≤ 4.19.*
`5.4.255`	unaffected	≤ 5.4.*
`5.10.192`	unaffected	≤ 5.10.*
`5.15.128`	unaffected	≤ 5.15.*
`6.1.47`	unaffected	≤ 6.1.*
`6.4.12`	unaffected	≤ 6.4.*
`6.5`	unaffected	≤ *

No data.

No data available yet.

Remediation

No vendor fix or workaround currently provided.

Additional remediation guidance may be available on OpenCVE Cloud.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00047.

Key SSVC decision points have not yet been added.

References

Link	Providers
https://git.kernel.org/stable/c/0c05493341d6f2097f75f0a5dbb7b53a9e8c5f6c
https://git.kernel.org/stable/c/18e27df4f2b4e257c317ba8076f31a888f6cc64b
https://git.kernel.org/stable/c/375806616f8c772c33d40e112530887b37c1a816
https://git.kernel.org/stable/c/66f3e55960698c874b0598277913b478ecd29573
https://git.kernel.org/stable/c/720a297b334e85d34099e83d1f375b92c3efedd6
https://git.kernel.org/stable/c/b653289ca6460a6552c8590b75dfa84a0140a46b
https://git.kernel.org/stable/c/bd70d0b28010d560a8be96b44fea86fe2ba016ae
https://git.kernel.org/stable/c/dfe2aeb226fd5e19b0ee795f4f6ed8bc494c1534
https://lore.kernel.org/linux-cve-announce/2025123027-CVE-2023-54220-2951@gregkh/T
https://nvd.nist.gov/vuln/detail/CVE-2023-54220
https://www.cve.org/CVERecord?id=CVE-2023-54220

History

Wed, 31 Dec 2025 12:15:00 +0000

Type	Values Removed	Values Added
References		https://lore.kernel.org/linux-cve-announce/2025123027-CVE-2023-54220-2951@gregkh/T https://nvd.nist.gov/vuln/detail/CVE-2023-54220 https://www.cve.org/CVERecord?id=CVE-2023-54220
Metrics	threat_severity `None`	cvssV3_1 `{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H'}` threat_severity `Low`

Tue, 30 Dec 2025 12:30:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: serial: 8250: Fix oops for port->pm on uart_change_pm() Unloading a hardware specific 8250 driver can produce error "Unable to handle kernel paging request at virtual address" about ten seconds after unloading the driver. This happens on uart_hangup() calling uart_change_pm(). Turns out commit 04e82793f068 ("serial: 8250: Reinit port->pm on port specific driver unbind") was only a partial fix. If the hardware specific driver has initialized port->pm function, we need to clear port->pm too. Just reinitializing port->ops does not do this. Otherwise serial8250_pm() will call port->pm() instead of serial8250_do_pm().
Title		serial: 8250: Fix oops for port->pm on uart_change_pm()
First Time appeared		Linux Linux linux Kernel
CPEs		cpe:2.3:o:linux:linux_kernel::::::::
Vendors & Products		Linux Linux linux Kernel
References		https://git.kernel.org/stable/c/0c05493341d6f2097f75f0a5dbb7b53a9e8c5f6c https://git.kernel.org/stable/c/18e27df4f2b4e257c317ba8076f31a888f6cc64b https://git.kernel.org/stable/c/375806616f8c772c33d40e112530887b37c1a816 https://git.kernel.org/stable/c/66f3e55960698c874b0598277913b478ecd29573 https://git.kernel.org/stable/c/720a297b334e85d34099e83d1f375b92c3efedd6 https://git.kernel.org/stable/c/b653289ca6460a6552c8590b75dfa84a0140a46b https://git.kernel.org/stable/c/bd70d0b28010d560a8be96b44fea86fe2ba016ae https://git.kernel.org/stable/c/dfe2aeb226fd5e19b0ee795f4f6ed8bc494c1534

Subscriptions

Linux Linux Kernel

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2025-12-30T12:11:15.385Z

Updated: 2026-05-23T15:34:25.387Z

Reserved: 2025-12-30T12:06:44.501Z

Link: CVE-2023-54220

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2025-12-30T13:16:10.300

Modified: 2026-04-15T00:35:42.020

Link: CVE-2023-54220

Redhat

Severity : Low

Publid Date: 2025-12-30T00:00:00Z

Links: CVE-2023-54220 - Bugzilla

OpenCVE Enrichment

No data.

Weaknesses

No weakness.

Tracking

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object