CVE-2026-31687
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
27/04/2026
Last modified:
06/05/2026
Description
In the Linux kernel, the following vulnerability has been resolved:<br />
<br />
gpio: omap: do not register driver in probe()<br />
<br />
Commit 11a78b794496 ("ARM: OMAP: MPUIO wake updates") registers the<br />
omap_mpuio_driver from omap_mpuio_init(), which is called from<br />
omap_gpio_probe().<br />
<br />
However, it neither makes sense to register drivers from probe()<br />
callbacks of other drivers, nor does the driver core allow registering<br />
drivers with a device lock already being held.<br />
<br />
The latter was revealed by commit dc23806a7c47 ("driver core: enforce<br />
device_lock for driver_match_device()") leading to a potential deadlock<br />
condition described in [1].<br />
<br />
Additionally, the omap_mpuio_driver is never unregistered from the<br />
driver core, even if the module is unloaded.<br />
<br />
Hence, register the omap_mpuio_driver from the module initcall and<br />
unregister it in module_exit().
Impact
Base Score 3.x
5.50
Severity 3.x
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 2.6.22 (including) | 5.10.251 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 5.11 (including) | 5.15.201 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 5.16 (including) | 6.1.164 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 6.2 (including) | 6.6.125 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 6.7 (including) | 6.12.72 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 6.13 (including) | 6.18.11 (excluding) |
| cpe:2.3:o:linux:linux_kernel:6.19:rc1:*:*:*:*:*:* | ||
| cpe:2.3:o:linux:linux_kernel:6.19:rc2:*:*:*:*:*:* | ||
| cpe:2.3:o:linux:linux_kernel:6.19:rc3:*:*:*:*:*:* | ||
| cpe:2.3:o:linux:linux_kernel:6.19:rc4:*:*:*:*:*:* | ||
| cpe:2.3:o:linux:linux_kernel:6.19:rc5:*:*:*:*:*:* | ||
| cpe:2.3:o:linux:linux_kernel:6.19:rc6:*:*:*:*:*:* | ||
| cpe:2.3:o:linux:linux_kernel:6.19:rc7:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- https://git.kernel.org/stable/c/03db4dc9ad6eb91e640b517e00373ce877682854
- https://git.kernel.org/stable/c/1c04c3a4de8d4bcb9202f94c44f26c57c2572308
- https://git.kernel.org/stable/c/2211d77892913804d16c28c7415b82804ab1e54c
- https://git.kernel.org/stable/c/32f08c3ddd6dda6cbb6c9d715de10f21dccde50f
- https://git.kernel.org/stable/c/53a76425e0764421ba93bb9045d2e454667d5687
- https://git.kernel.org/stable/c/57bcd3feffa79544c73a1a1872472389a391cc79
- https://git.kernel.org/stable/c/673dafb9a86349a12a93151fd467625614dc7e12
- https://git.kernel.org/stable/c/730e5ebff40c852e3ea57b71bf02a4b89c69435f
- https://git.kernel.org/stable/c/86588916e1887a5edb8a9161cd7ae81e47a7ed25
- https://git.kernel.org/stable/c/a29215961d833f4de33a09c3964d31ebc6083033
- https://git.kernel.org/stable/c/a7fa9460b86f810913b6779461d0448e7c11214c