CVE-2023-52660

Summary

In the Linux kernel, the following vulnerability has been resolved:

media: rkisp1: Fix IRQ handling due to shared interrupts

The driver requests the interrupts as IRQF_SHARED, so the interrupt handlers can be called at any time. If such a call happens while the ISP is powered down, the SoC will hang as the driver tries to access the ISP registers.

This can be reproduced even without the platform sharing the IRQ line: Enable CONFIG_DEBUG_SHIRQ and unload the driver, and the board will hang.

Fix this by adding a new field, 'irqs_enabled', which is used to bail out from the interrupt handler when the ISP is not operational.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux25cb42af9ffabffec499e9e69e2fd3797774ce5b < abd34206f396d3ae50cddbd5aa840b8cd7f68c63affected
LinuxLinux25cb42af9ffabffec499e9e69e2fd3797774ce5b < b39b4d207d4f236a74e20d291f6356f2231fd9eeaffected
LinuxLinux25cb42af9ffabffec499e9e69e2fd3797774ce5b < edcf92bc66d8361c51dff953a55210e5cfd95587affected
LinuxLinux25cb42af9ffabffec499e9e69e2fd3797774ce5b < ffb635bb398fc07cb38f8a7b4a82cbe5f412f08eaffected
LinuxLinux5.6affected
LinuxLinux0 < 5.6unaffected
LinuxLinux6.1.83 <= 6.1.*unaffected
LinuxLinux6.6.23 <= 6.6.*unaffected
LinuxLinux6.7.11 <= 6.7.*unaffected
LinuxLinux6.8 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References