Linux Kernel MPU-3050 Gyroscope Driver Race Condition Vulnerability

A race condition vulnerability has been identified in the Linux kernel's MPU-3050 gyroscope driver. The issue arises because the function 'iio_device_register()' is not placed correctly within the probe function, leading to potential race conditions. This vulnerability affects the Linux kernel stable tree.

Impact

The vulnerability can cause race conditions, which may lead to unpredictable behavior in the driver, potentially causing incorrect data to be reported or allowing for other timing-related issues.

Reproduction

The vulnerability can be reproduced by loading the MPU-3050 gyroscope driver in the Linux kernel stable tree. The driver will register the IIO device before completing the probe function, creating a race condition. This can be observed by monitoring the driver's behavior or the data it reports, which may be inconsistent or incorrect due to the timing issue.

Remediation

The vulnerability has been addressed by moving the 'iio_device_register()' call to the end of the probe function and adjusting the 'iio_device_unregister()' call in the remove function accordingly. Users should update to the latest version of the Linux kernel stable tree where this fix has been applied.