PT-2025-52655 · Linux+4 · Linux Kernel+5

Published

2025-01-01

·

Updated

2026-05-26

·

CVE-2025-68327

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.17.0-rc7-next-20250922-00010-g41050493b2bd
Description A flaw exists in the Linux kernel's Renesas USB Host Controller driver (usbhs). Specifically, a synchronous external abort can occur on the Renesas RZ/G3S SoC when the unbind operation is executed after a specific configuration sequence. This happens because the usbhs sys function pullup() function, which accesses IP registers, is called after the USBHS clocks have been disabled. The issue is reproducible with module stop functionality enabled, leading to a bus error when a master accesses a module with a stopped clock. The problem arises from the order of operations during device removal, where IP clocks are not disabled at the end of the remove process.
Recommendations Update the Linux kernel to version 6.17.0-rc7-next-20250922-00010-g41050493b2bd or a later version that includes the fix.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Related Identifiers

AZL-72883
CVE-2025-68327
ECHO-EE7D-879A-2238
MGASA-2026-0017
MGASA-2026-0018
OPENSUSE-SU-2026:20145-1
SUSE-SU-2026:0447-1
SUSE-SU-2026:0472-1
SUSE-SU-2026:0587-1
SUSE-SU-2026:20207-1
SUSE-SU-2026:20220-1
SUSE-SU-2026:20228-1
SUSE-SU-2026:20477-1
SUSE-SU-2026:20498-1
SUSE-SU-2026:20845-1
SUSE-SU-2026:20876-1
USN-8094-1
USN-8094-2
USN-8094-3
USN-8094-4
USN-8094-5
USN-8095-1
USN-8095-2
USN-8095-3
USN-8095-4
USN-8095-5
USN-8096-1
USN-8096-2
USN-8096-3
USN-8096-4
USN-8096-5
USN-8100-1
USN-8116-1
USN-8125-1
USN-8126-1
USN-8141-1
USN-8152-1
USN-8163-1
USN-8163-2
USN-8165-1
USN-8243-1
USN-8261-1

Affected Products

Debian
Linuxmint
Linux Kernel
Rz/G3S Soc
Renesas Usb Host Controller
Ubuntu