CVE-2024-57914

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.12.0-rc6-06316-g7f63786ad3d1-dirty

Description The issue is related to a NULL pointer dereference in the tcpci irq() function when handling shared interrupts. This can occur when two Type-C ports share an interrupt, and the second port's interrupt handler runs before the first port has finished registering. The problem arises because tcpci is still a NULL pointer in tcpci irq() when dereferencing to regmap. The tcpci init() function writes the ALERT MASK to the hardware to start generating interrupts, but if this happens before devm request threaded irq() is called, the ALERT events may be missed, and the ALERT line will not recover to a high level.

Recommendations To resolve this issue, update the Linux kernel to a version that includes the fix for the NULL pointer issue on shared irq case. Specifically, ensure that the tcpci register port() function is called after devm request threaded irq() to avoid the NULL pointer dereference issue. Additionally, set the ALERT MASK register after devm request threaded irq() returns to prevent missing ALERT events.

Note: The provided information does not specify the exact fixed version, so it is recommended to update to the latest available version of the Linux kernel.