CVE-2025-21685

In the Linux kernel, the following vulnerability has been resolved:<br /> <br /> platform/x86: lenovo-yoga-tab2-pro-1380-fastcharger: fix serdev race<br /> <br /> The yt2_1380_fc_serdev_probe() function calls devm_serdev_device_open()<br /> before setting the client ops via serdev_device_set_client_ops(). This<br /> ordering can trigger a NULL pointer dereference in the serdev controller&amp;#39;s<br /> receive_buf handler, as it assumes serdev-&gt;ops is valid when<br /> SERPORT_ACTIVE is set.<br /> <br /> This is similar to the issue fixed in commit 5e700b384ec1<br /> ("platform/chrome: cros_ec_uart: properly fix race condition") where<br /> devm_serdev_device_open() was called before fully initializing the<br /> device.<br /> <br /> Fix the race by ensuring client ops are set before enabling the port via<br /> devm_serdev_device_open().<br /> <br /> Note, serdev_device_set_baudrate() and serdev_device_set_flow_control()<br /> calls should be after the devm_serdev_device_open() call.