CVE-2025-40107

In the Linux kernel, the following vulnerability has been resolved:<br /> <br /> can: hi311x: fix null pointer dereference when resuming from sleep before interface was enabled<br /> <br /> This issue is similar to the vulnerability in the `mcp251x` driver,<br /> which was fixed in commit 03c427147b2d ("can: mcp251x: fix resume from<br /> sleep before interface was brought up").<br /> <br /> In the `hi311x` driver, when the device resumes from sleep, the driver<br /> schedules `priv-&gt;restart_work`. However, if the network interface was<br /> not previously enabled, the `priv-&gt;wq` (workqueue) is not allocated and<br /> initialized, leading to a null pointer dereference.<br /> <br /> To fix this, we move the allocation and initialization of the workqueue<br /> from the `hi3110_open` function to the `hi3110_can_probe` function.<br /> This ensures that the workqueue is properly initialized before it is<br /> used during device resume. And added logic to destroy the workqueue<br /> in the error handling paths of `hi3110_can_probe` and in the<br /> `hi3110_can_remove` function to prevent resource leaks.