CVE-2024-40975

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue arises from the removal of devices while there are still consumers with a reference to the device. This is particularly problematic in the regulator subsystem. If a regulator is unregistered while drivers still hold a reference, a warning is triggered. The bq24190 charger chip provides a 5V boost converter output for powering USB devices, and its driver exports this as a Vbus regulator. The removal order of devices is crucial, especially on the Lenovo Yoga Tablet 2 series, where the regulator is controlled differently across models. To avoid similar problems, the solution involves changing the x86 android tablet remove function to unregister all device types in reverse order.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.