Linux Kernel Wave5 Media Device Cleanup Order Vulnerability Leading to Kernel Panic

A vulnerability in the Linux kernel's handling of media devices can cause random kernel panics during video encoding operations. This issue arises from an improper device cleanup order that allows a worker thread to access hardware registers of a powered-down device, leading to a bus error and kernel panic. The vulnerability is present in the 'chips-media' component, specifically in the 'wave5' media platform.

Impact

The vulnerability can cause intermittent kernel panics, disrupting system stability and potentially leading to data loss or corruption.

Reproduction

The vulnerability can be reproduced by triggering the autosuspend feature, which powers down the hardware while the video device is still registered. This can be done by initiating a video encoding operation that involves the 'wave5' media device, allowing the hrtimer to activate the worker thread. Once the hardware is powered off, the worker thread will attempt to read registers from the inactive device, causing a bus error and kernel panic.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been addressed. Instructions for downloading the patched version are available on the official Linux kernel website.