CVE-2025-68318
Description
In the Linux kernel, the following vulnerability has been resolved:
clk: thead: th1520-ap: set all AXI clocks to CLK_IS_CRITICAL
The AXI crossbar of TH1520 has no proper timeout handling, which means gating AXI clocks can easily lead to bus timeout and thus system hang.
Set all AXI clock gates to CLK_IS_CRITICAL. All these clock gates are ungated by default on system reset.
In addition, convert all current CLK_IGNORE_UNUSED usage to CLK_IS_CRITICAL to prevent unwanted clock gating.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
In the Linux kernel, TH1520 AXI clock gating can cause system hang; the fix marks all AXI clocks as critical to prevent gating.
The vulnerability exists in the Linux kernel's clock driver for the T-Head TH1520 SoC. The AXI crossbar lacks proper timeout handling, meaning that gating AXI clocks can lead to bus timeouts and system hangs. The fix sets all AXI clock gates to CLK_IS_CRITICAL, preventing them from being gated. [1][2]
No special attacker prerequisites are described; the issue is a design flaw that can be triggered by normal system operations (e.g., clock framework gating unused clocks). The patch converts previous CLK_IGNORE_UNUSED usage to CLK_IS_CRITICAL to avoid accidental gating.
The impact is denial of service: an attempt to gate AXI clocks may cause a system hang, resulting in unavailability of the device. No workarounds are mentioned; the fix is to apply the kernel patch.
The fix has been committed to the Linux kernel stable tree. Users should update to a kernel version containing commit c567bc5fc68c or bdec5e01fc2f. [1][2]
AI Insight generated on May 19, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2News mentions
0No linked articles in our index yet.