Primary

Context

Linux Kernel MIPI-DSI Host Device Detachment Vulnerability

Vulnerability

Patched

A vulnerability exists in the Linux kernel's handling of MIPI-DSI host device unregistration. When a MIPI-DSI host is unregistered, the process loops through all devices on that bus to unregister them. However, it fails to first detach these devices from the bus, leading to resource leaks. This issue can disrupt the host's cleanup process when a device is detached.

Impact

The vulnerability can cause resource leaks, disrupting the proper cleanup process when MIPI-DSI devices are detached from the host.

Reproduction

The vulnerability can be reproduced by unregistering a MIPI-DSI host without first detaching the devices on that bus. This can be done by calling the 'mipi_dsi_host_unregister()' function, which will loop over the devices and unregister them without detaching them first.

Remediation

Users can apply the latest patches available in the Linux kernel stable tree to address this vulnerability.

Added: Oct 4, 2025, 7:40 PM

Updated: Oct 4, 2025, 7:40 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

4.3

remediation

7.7

relevance

0.7

threat

4.8

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

4.3

remediation

7.7

relevance

0.7

threat

4.8

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel MIPI-DSI Host Device Detachment Vulnerability

Vulnerability

Impact

Reproduction

Remediation

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating