CVE-2024-56618

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.12.0-rc2-0.0.0-devel-00004-g8b1b79e88956

Description A vulnerability in the Linux kernel has been resolved, related to the pmdomain: imx: gpcv2: Adjust delay after power up handshake. The udelay(5) is not enough, sometimes causing a kernel panic still to be triggered. The correct way is to wait for the handshake, but it needs the BUS clock of BLK-CTL to be enabled, which is in a separate driver. So, delay is the only option here. The udelay(10) is a data obtained through experiment.

Recommendations To resolve the issue for Linux kernel versions prior to 6.12.0-rc2-0.0.0-devel-00004-g8b1b79e88956, update to a version that includes the fix for the pmdomain: imx: gpcv2: Adjust delay after power up handshake. As a temporary workaround, consider increasing the delay after power up handshake to udelay(10) to minimize the risk of kernel panic.