Volerion logoVolerion
Volerion logoVolerion

Linux Kernel Remoteproc Workqueue Mutex Protection Vulnerability

Vulnerability

A vulnerability in the Linux kernel's remoteproc subsystem for the i.MX DSP can lead to a kernel dump. This issue arises because the workqueue may continue executing after remoteproc has been stopped. When remoteproc stops, it releases certain resources, such as the rpmsg device and endpoint. If the workqueue then accesses these released resources, it can cause a kernel crash. The vulnerability has been addressed by adding mutex protection to the workqueue operations, ensuring that interrupted resources are not accessed after being released.

Impact

The vulnerability can cause a kernel crash by accessing released resources, leading to a kernel dump.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been fixed. Instructions for downloading the patched version are available on the Linux kernel official website.

Added: Oct 1, 2025, 1:12 PM
Updated: Oct 1, 2025, 1:12 PM

Vulnerability Rating

Custom Algorithm
spread
9.0
impact
2.5
exploitability
5.3
remediation
7.7
relevance
0.6
threat
3.2
urgency
2.9
incentive
1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.