Linux Kernel Input Subsystem Hung Task Vulnerability in Iforce Driver

A vulnerability in the Linux kernel's input subsystem, specifically within the iforce driver, has been identified. The issue arises when the iforce_close() function, holding the device mutex, waits for a command to complete. This blockage prevents the input_disconnect_device() function from unregistering the device, leading to a hung task. The problem was introduced by a previous commit that failed to properly signal the completion of a command, creating a deadlock situation.

Impact

The vulnerability causes a deadlock in the input subsystem, where a device cannot be unregistered because the close function is waiting for a command to finish, effectively hanging the task.

Remediation

The vulnerability has been addressed by introducing a helper function that clears the IFORCE_XMIT_RUNNING flag and then wakes up any waiting tasks, allowing the device to be properly unregistered. Users should apply the latest patches from the official Linux kernel repository to mitigate this issue.