2405134 – (CVE-2025-40005) CVE-2025-40005 kernel: spi: cadence-quadspi: Implement refcount to handle unbind during busy

Bug 2405134 (CVE-2025-40005) - CVE-2025-40005 kernel: spi: cadence-quadspi: Implement refcount to handle unbind during busy

Summary: CVE-2025-40005 kernel: spi: cadence-quadspi: Implement refcount to handle unb...

Keywords:
Status:	NEW
Alias:	CVE-2025-40005
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Product Security
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2025-10-20 17:23 UTC by OSIDB Bzimport
Modified:	2025-10-20 17:42 UTC (History)
CC List:	0 users
Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description OSIDB Bzimport 2025-10-20 17:23:56 UTC

In the Linux kernel, the following vulnerability has been resolved:

spi: cadence-quadspi: Implement refcount to handle unbind during busy

driver support indirect read and indirect write operation with
assumption no force device removal(unbind) operation. However
force device removal(removal) is still available to root superuser.

Unbinding driver during operation causes kernel crash. This changes
ensure driver able to handle such operation for indirect read and
indirect write by implementing refcount to track attached devices
to the controller and gracefully wait and until attached devices
remove operation completed before proceed with removal operation.

Comment 1 Jon Moroney 2025-10-20 17:40:19 UTC

Upstream advisory:
https://lore.kernel.org/linux-cve-announce/2025102000-CVE-2025-40005-b351@gregkh/T

Note You need to log in before you can comment on or make changes to this bug.