* CVE-2026-53226: gpio: rockchip: fix generic IRQ chip leak on remove
@ 2026-06-25 8:41 Greg Kroah-Hartman
0 siblings, 0 replies; only message in thread
From: Greg Kroah-Hartman @ 2026-06-25 8:41 UTC (permalink / raw)
To: linux-cve-announce; +Cc: Greg Kroah-Hartman
From: Greg Kroah-Hartman <gregkh@kernel.org>
Description
===========
In the Linux kernel, the following vulnerability has been resolved:
gpio: rockchip: fix generic IRQ chip leak on remove
The driver allocates domain generic chips using
irq_alloc_domain_generic_chips() during probe. However, on driver
remove/teardown, the generic chips are not automatically freed when the
IRQ domain is removed because the domain flags do not include
IRQ_DOMAIN_FLAG_DESTROY_GC.
This causes both the domain generic chips structure and the associated
generic chips to be leaked. Additionally, the generic chips remain on
the global gc_list and may later be visited by generic IRQ chip suspend,
resume, or shutdown callbacks after the GPIO bank has been removed,
potentially resulting in a use-after-free and kernel crash.
Fix the resource leak by explicitly calling
irq_domain_remove_generic_chips() before removing the IRQ domain in
rockchip_gpio_remove().
The Linux kernel CVE team has assigned CVE-2026-53226 to this issue.
Affected and fixed versions
===========================
Issue introduced in 5.15 with commit 936ee2675eee1faca0dcdfa79165c7990422e0fc and fixed in 6.18.36 with commit bace7b99bfa555fe833aee8827b8004c43666d02
Issue introduced in 5.15 with commit 936ee2675eee1faca0dcdfa79165c7990422e0fc and fixed in 7.0.13 with commit 1f34ea5f6114011092d9a5c8b901ad6741144a1d
Issue introduced in 5.15 with commit 936ee2675eee1faca0dcdfa79165c7990422e0fc and fixed in 7.1 with commit 1c1e0fc88d6ef65bf15d517853251f75ab9d18c3
Please see https://www.kernel.org for a full list of currently supported
kernel versions by the kernel community.
Unaffected versions might change over time as fixes are backported to
older supported kernel versions. The official CVE entry at
https://cve.org/CVERecord/?id=CVE-2026-53226
will be updated if fixes are backported, please check that for the most
up to date information about this issue.
Affected files
==============
The file(s) affected by this issue are:
drivers/gpio/gpio-rockchip.c
Mitigation
==========
The Linux kernel CVE team recommends that you update to the latest
stable kernel version for this, and many other bugfixes. Individual
changes are never tested alone, but rather are part of a larger kernel
release. Cherry-picking individual commits is not recommended or
supported by the Linux kernel community at all. If however, updating to
the latest release is impossible, the individual changes to resolve this
issue can be found at these commits:
https://git.kernel.org/stable/c/bace7b99bfa555fe833aee8827b8004c43666d02
https://git.kernel.org/stable/c/1f34ea5f6114011092d9a5c8b901ad6741144a1d
https://git.kernel.org/stable/c/1c1e0fc88d6ef65bf15d517853251f75ab9d18c3
^ permalink raw reply [flat|nested] only message in thread
only message in thread, other threads:[~2026-06-25 8:47 UTC | newest]
Thread overview: (only message) (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2026-06-25 8:41 CVE-2026-53226: gpio: rockchip: fix generic IRQ chip leak on remove Greg Kroah-Hartman
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.