CVE-2025-68316
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
scsi: ufs: core: Fix invalid probe error return value
After DME Link Startup, the error return value is set to the MIPI UniPro GenericErrorCode which can be 0 (SUCCESS) or 1 (FAILURE). Upon failure during driver probe, the error code 1 is propagated back to the driver probe function which must return a negative value to indicate an error, but 1 is not negative, so the probe is considered to be successful even though it failed. Subsequently, removing the driver results in an oops because it is not in a valid state.
This happens because none of the callers of ufshcd_init() expect a non-negative error code.
Fix the return value and documentation to match actual usage.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 69f5eb78d4b0cc978fe83dd2bfea1b67547290bf < df96dbe1af7f6591c09f862f1226d3619b07e1b6 | affected |
| Linux | Linux | 69f5eb78d4b0cc978fe83dd2bfea1b67547290bf < a2b32bc1d9e359a9f90d0de6af16699facb10935 | affected |
| Linux | Linux | 6.13 | affected |
| Linux | Linux | 0 < 6.13 | unaffected |
| Linux | Linux | 6.17.8 <= 6.17.* | unaffected |
| Linux | Linux | 6.18 <= * | unaffected |
Weaknesses
References
- https://git.kernel.org/stable/c/df96dbe1af7f6591c09f862f1226d3619b07e1b6
- https://git.kernel.org/stable/c/a2b32bc1d9e359a9f90d0de6af16699facb10935
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.