CVE-2025-22028

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.13.0-rc2-syzkaller-00362-g2d8308bf5b67

Description A warning was reported by Syzbot due to a check in call s stream() that verifies whether the .s stream() operation is warranted for unstarted or stopped subdevs. The issue arises from the vimc streamer pipeline terminate() function not properly handling entities that have not been started. To address this, a fix was implemented to ensure that entities skip the call to .s stream() unless they have been previously properly started. The estimated number of potentially affected devices is not available.

Recommendations For Linux kernel versions prior to 6.13.0-rc2-syzkaller-00362-g2d8308bf5b67, consider updating to a newer version to mitigate the risk. As a temporary workaround, consider disabling the vimc streamer pipeline terminate() function until a patch is available. Restrict access to the vulnerable vimc-streamer module to minimize the risk of exploitation. Avoid using the s stream operation in the affected API endpoints until the issue is resolved.