CVE-2025-71111
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
hwmon: (w83791d) Convert macros to functions to avoid TOCTOU
The macro FAN_FROM_REG evaluates its arguments multiple times. When used in lockless contexts involving shared driver data, this leads to Time-of-Check to Time-of-Use (TOCTOU) race conditions, potentially causing divide-by-zero errors.
Convert the macro to a static function. This guarantees that arguments are evaluated only once (pass-by-value), preventing the race conditions.
Additionally, in store_fan_div, move the calculation of the minimum limit inside the update lock. This ensures that the read-modify-write sequence operates on consistent data.
Adhere to the principle of minimal changes by only converting macros that evaluate arguments multiple times and are used in lockless contexts.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 9873964d6eb24bd0205394f9b791de9eddbcb855 < 3dceb68f6ad33156032ef4da21a93d84059cca6d | affected |
| Linux | Linux | 9873964d6eb24bd0205394f9b791de9eddbcb855 < bf5b03227f2e6d4360004886d268f9df8993ef8f | affected |
| Linux | Linux | 9873964d6eb24bd0205394f9b791de9eddbcb855 < f2b579a0c37c0df19603d719894a942a295f634a | affected |
| Linux | Linux | 9873964d6eb24bd0205394f9b791de9eddbcb855 < f94800fbc26ccf7c81eb791707b038a57aa39a18 | affected |
| Linux | Linux | 9873964d6eb24bd0205394f9b791de9eddbcb855 < a9fb6e8835a22f5796c1182ed612daed3fd273af | affected |
| Linux | Linux | 9873964d6eb24bd0205394f9b791de9eddbcb855 < c8cf0c2bdcccc6634b6915ff793b844e12436680 | affected |
| Linux | Linux | 9873964d6eb24bd0205394f9b791de9eddbcb855 < 670d7ef945d3a84683594429aea6ab2cdfa5ceb4 | affected |
| Linux | Linux | 2.6.18 | affected |
| Linux | Linux | 0 < 2.6.18 | unaffected |
| Linux | Linux | 5.10.248 <= 5.10.* | unaffected |
| Linux | Linux | 5.15.198 <= 5.15.* | unaffected |
| Linux | Linux | 6.1.160 <= 6.1.* | unaffected |
| Linux | Linux | 6.6.120 <= 6.6.* | unaffected |
| Linux | Linux | 6.12.64 <= 6.12.* | unaffected |
| Linux | Linux | 6.18.3 <= 6.18.* | unaffected |
| Linux | Linux | 6.19 <= * | unaffected |
Weaknesses
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
- https://git.kernel.org/stable/c/3dceb68f6ad33156032ef4da21a93d84059cca6d
- https://git.kernel.org/stable/c/bf5b03227f2e6d4360004886d268f9df8993ef8f
- https://git.kernel.org/stable/c/f2b579a0c37c0df19603d719894a942a295f634a
- https://git.kernel.org/stable/c/f94800fbc26ccf7c81eb791707b038a57aa39a18
- https://git.kernel.org/stable/c/a9fb6e8835a22f5796c1182ed612daed3fd273af
- https://git.kernel.org/stable/c/c8cf0c2bdcccc6634b6915ff793b844e12436680
- https://git.kernel.org/stable/c/670d7ef945d3a84683594429aea6ab2cdfa5ceb4
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.