Linux Kernel Mediatek MT8173 AFE Driver Interrupt Handling Vulnerability

A vulnerability in the Linux kernel's handling of interrupts for the Mediatek MT8173 Audio Framework Engine (AFE) platform driver has been addressed. The issue arose because the driver could receive an interrupt request (IRQ) before it was fully prepared to process it, particularly if the device had not been reset. This premature IRQ handling led to a kernel error when attempting to read from an inaccessible memory location, causing a crash. The vulnerability has been fixed by ensuring that the IRQ is only enabled when the driver is ready to handle it.

Impact

The vulnerability could cause a kernel crash by attempting to read from an unreadable memory address, disrupting normal system operations.

Reproduction

The vulnerability can be reproduced by loading the Mediatek MT8173 AFE driver on a device that has not been reset. This will cause the driver to receive an interrupt request before it is ready to process it, leading to a crash.

Remediation

Users can update to the latest version of the Linux kernel where this vulnerability has been fixed. Instructions for downloading the patched kernel are available on the official Linux kernel website.