CVE-2025-71158

Summary

In the Linux kernel, the following vulnerability has been resolved:

gpio: mpsse: ensure worker is torn down

When an IRQ worker is running, unplugging the device would cause a crash. The sealevel hardware this driver was written for was not hotpluggable, so I never realized it.

This change uses a spinlock to protect a list of workers, which it tears down on disconnect.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxc46a74ff05c0ac76ba11ef21c930c3b447abf31a < 472d900c8bcac301ae0e40fdca7db799bd989ff5affected
LinuxLinuxc46a74ff05c0ac76ba11ef21c930c3b447abf31a < 179ef1127d7a4f09f0e741fa9f30b8a8e7886271affected
LinuxLinux6.13affected
LinuxLinux0 < 6.13unaffected
LinuxLinux6.18.6 <= 6.18.*unaffected
LinuxLinux6.19 <= *unaffected

Weaknesses

References