CVE-2026-43145
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
remoteproc: imx_rproc: Fix invalid loaded resource table detection
imx_rproc_elf_find_loaded_rsc_table() may incorrectly report a loaded resource table even when the current firmware does not provide one.
When the device tree contains a "rsc-table" entry, priv->rsc_table is non-NULL and denotes where a resource table would be located if one is present in memory. However, when the current firmware has no resource table, rproc->table_ptr is NULL. The function still returns priv->rsc_table, and the remoteproc core interprets this as a valid loaded resource table.
Fix this by returning NULL from imx_rproc_elf_find_loaded_rsc_table() when there is no resource table for the current firmware (i.e. when rproc->table_ptr is NULL). This aligns the function's semantics with the remoteproc core: a loaded resource table is only reported when a valid table_ptr exists.
With this change, starting firmware without a resource table no longer triggers a crash.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 64f2ca5ce97111a364a18c31772eb46c79e8b772 < 91baf24d972ea3c04a75dd18821c03d223c0dbc0 | affected |
| Linux | Linux | 1d750606fedcdff7886f35a558c51b05ce2680a6 < fcec79b6a3649ae7b1f659267602ca402c240d6e | affected |
| Linux | Linux | 7fb5f957213bc7268bac449f8bfe95967c9f3f3b < 9bd98d088f47153a81a6ec8162b4415c64aa7f39 | affected |
| Linux | Linux | e954a1bd16102abc800629f9900715d8ec4c3130 < 65379adf7d231c930572db45933ff4538f4c5128 | affected |
| Linux | Linux | e954a1bd16102abc800629f9900715d8ec4c3130 < 500778df9e4c313190368908ff40c23948508e97 | affected |
| Linux | Linux | e954a1bd16102abc800629f9900715d8ec4c3130 < 198c629bd03863591f3fbf5ce8ff974a33f13dc9 | affected |
| Linux | Linux | e954a1bd16102abc800629f9900715d8ec4c3130 < 26aa5295010ffaebcf8f1991c53fa7cf2ee1b20d | affected |
| Linux | Linux | 3d131f138e092c414c69860f2c897c59d660da99 | affected |
| Linux | Linux | 5.15.168 < 5.15.202 | affected |
| Linux | Linux | 6.1.113 < 6.1.165 | affected |
| Linux | Linux | 6.6.57 < 6.6.128 | affected |
| Linux | Linux | 6.11.4 < 6.12 | affected |
| Linux | Linux | 6.12 | affected |
| Linux | Linux | 0 < 6.12 | unaffected |
| Linux | Linux | 5.15.202 <= 5.15.* | unaffected |
| Linux | Linux | 6.1.165 <= 6.1.* | unaffected |
| Linux | Linux | 6.6.128 <= 6.6.* | unaffected |
| Linux | Linux | 6.12.75 <= 6.12.* | unaffected |
| Linux | Linux | 6.18.16 <= 6.18.* | unaffected |
| Linux | Linux | 6.19.6 <= 6.19.* | unaffected |
| Linux | Linux | 7.0 <= * | unaffected |
Weaknesses
References
- https://git.kernel.org/stable/c/91baf24d972ea3c04a75dd18821c03d223c0dbc0
- https://git.kernel.org/stable/c/fcec79b6a3649ae7b1f659267602ca402c240d6e
- https://git.kernel.org/stable/c/9bd98d088f47153a81a6ec8162b4415c64aa7f39
- https://git.kernel.org/stable/c/65379adf7d231c930572db45933ff4538f4c5128
- https://git.kernel.org/stable/c/500778df9e4c313190368908ff40c23948508e97
- https://git.kernel.org/stable/c/198c629bd03863591f3fbf5ce8ff974a33f13dc9
- https://git.kernel.org/stable/c/26aa5295010ffaebcf8f1991c53fa7cf2ee1b20d
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.