Linux Kernel GPIO IR Receiver Runtime Suspend NULL Pointer Dereference Vulnerability

A vulnerability in the Linux kernel's GPIO IR receiver module can lead to a NULL pointer dereference. This issue occurs when the driver is removed without properly cleaning up a CPU latency quality of service request, especially if runtime power management is enabled. The improper removal sequence can cause a kernel crash by attempting to access a null memory address, as indicated by the kernel's error logs.

Impact

The vulnerability causes a kernel crash due to a NULL pointer dereference, disrupting system operations and potentially leading to a denial of service.

Reproduction

The vulnerability can be reproduced by loading the GPIO IR receiver module with runtime power management enabled, and then removing the module without first clearing the associated CPU latency quality of service request. This sequence triggers a kernel NULL pointer dereference, causing a crash.