CVE-2026-31550

Summary

In the Linux kernel, the following vulnerability has been resolved:

pmdomain: bcm: bcm2835-power: Increase ASB control timeout

The bcm2835_asb_control() function uses a tight polling loop to wait for the ASB bridge to acknowledge a request. During intensive workloads, this handshake intermittently fails for V3D's master ASB on BCM2711, resulting in "Failed to disable ASB master for v3d" errors during runtime PM suspend. As a consequence, the failed power-off leaves V3D in a broken state, leading to bus faults or system hangs on later accesses.

As the timeout is insufficient in some scenarios, increase the polling timeout from 1us to 5us, which is still negligible in the context of a power domain transition. Also, replace the open-coded ktime_get_ns()/ cpu_relax() polling loop with readl_poll_timeout_atomic().

Affected Software

VendorProductVersion RangeStatus
LinuxLinux670c672608a1ffcbc7ac0f872734843593bb8b15 < 0e84e74849d2d7e9b23a09c2d5e0d9357db1ca59affected
LinuxLinux670c672608a1ffcbc7ac0f872734843593bb8b15 < c5e734f6a0740dce92e7c919e632cb43fa5d4e53affected
LinuxLinux670c672608a1ffcbc7ac0f872734843593bb8b15 < 622ab02e955c35c125ff2b65d8327b2c52db8758affected
LinuxLinux670c672608a1ffcbc7ac0f872734843593bb8b15 < 9443202d91388026dbf7312972a74fbfd27ee82faffected
LinuxLinux670c672608a1ffcbc7ac0f872734843593bb8b15 < ea4fa54b83bb2e4a21e9026824bfe271b1a6ee1eaffected
LinuxLinux670c672608a1ffcbc7ac0f872734843593bb8b15 < 18605b1b936b66b1f34dcf8e9ad4f1fbcf7a7c13affected
LinuxLinux670c672608a1ffcbc7ac0f872734843593bb8b15 < 572f17180f26619809b8e0593d926762aa8660ffaffected
LinuxLinux670c672608a1ffcbc7ac0f872734843593bb8b15 < b826d2c0b0ecb844c84431ba6b502e744f5d919aaffected
LinuxLinux5.1affected
LinuxLinux0 < 5.1unaffected
LinuxLinux5.10.253 <= 5.10.*unaffected
LinuxLinux5.15.203 <= 5.15.*unaffected
LinuxLinux6.1.167 <= 6.1.*unaffected
LinuxLinux6.6.130 <= 6.6.*unaffected
LinuxLinux6.12.78 <= 6.12.*unaffected
LinuxLinux6.18.20 <= 6.18.*unaffected
LinuxLinux6.19.10 <= 6.19.*unaffected
LinuxLinux7.0 <= *unaffected

Weaknesses

References