Description
In the Linux kernel, the following vulnerability has been resolved:

clk: spacemit: ccu_mix: fix inverted condition in ccu_mix_trigger_fc()

Fix inverted condition that skips frequency change trigger,
causing kernel panics during cpufreq scaling.
Published: 2026-06-24
Score: n/a
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The Spacemit CCU mixer driver in the Linux kernel contains an inverted conditional statement within the function ccu_mix_trigger_fc() that causes the frequency change trigger to be skipped during CPU frequency scaling. When the kernel attempts to adjust the CPU frequency, this omission leads to a kernel panic, resulting in a loss of system availability. The flaw does not provide direct code execution or privilege escalation. Instead, the impact is limited to a crash of the kernel that can be exploited to cause a denial‑of‑service condition or to disrupt operations.

Affected Systems

All Linux kernel installations that include the Spacemit CCU mixer driver are affected. This encompasses standard mainline builds as well as any custom kernels that contain the relevant source code. The vulnerability is present in the code before the recent commit that addresses the inverted condition, so any kernel version without that patch is susceptible.

Risk and Exploitability

The EPSS score is reported as less than 1%, indicating a very low probability that this vulnerability will be exploited in the wild. It is not listed in the CISA KEV catalog, and no CVSS score is provided in the public record. The likely attack vector is local, requiring access to trigger CPU frequency scaling on the target system. Although the panic can abruptly, making timely patching advisory.

Generated by OpenCVE AI on June 27, 2026 at 03:50 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update the system to a Linux kernel version that incorporates the fix for ccu_mix_trigger_fc() in the Spacemit CCU mixer driver (install the latest distribution kernel update package).
  • If building a custom kernel, cherry‑pick or apply the commit that corrects the inverted condition from the kernel source tree and rebuild the kernel. If unsure, refer to the commit referenced in the official patch series for guidance.
  • Disable CPU frequency scaling (cpufreq) or switch to an alternative scaling driver until the kernel has been updated or rebuilt to contain the fix, thereby preventing the triggering of the crash.

Generated by OpenCVE AI on June 27, 2026 at 03:50 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Sat, 27 Jun 2026 02:45:00 +0000

Type Values Removed Values Added
Weaknesses CWE-253

Sat, 27 Jun 2026 00:15:00 +0000


Wed, 24 Jun 2026 19:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-253

Wed, 24 Jun 2026 17:15:00 +0000

Type Values Removed Values Added
Description In the Linux kernel, the following vulnerability has been resolved: clk: spacemit: ccu_mix: fix inverted condition in ccu_mix_trigger_fc() Fix inverted condition that skips frequency change trigger, causing kernel panics during cpufreq scaling.
Title clk: spacemit: ccu_mix: fix inverted condition in ccu_mix_trigger_fc()
First Time appeared Linux
Linux linux Kernel
CPEs cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Vendors & Products Linux
Linux linux Kernel
References

Subscriptions

Linux Linux Kernel
cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published:

Updated: 2026-06-24T16:29:28.910Z

Reserved: 2026-06-09T07:44:35.379Z

Link: CVE-2026-53019

cve-icon Vulnrichment

No data.

cve-icon NVD

No data.

cve-icon Redhat

Severity :

Publid Date: 2026-06-24T00:00:00Z

Links: CVE-2026-53019 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-06-27T04:00:10Z

Weaknesses
  • CWE-783

    Operator Precedence Logic Error