CVE-2025-71158

medium

Description

In the Linux kernel, the following vulnerability has been resolved: gpio: mpsse: ensure worker is torn down When an IRQ worker is running, unplugging the device would cause a crash. The sealevel hardware this driver was written for was not hotpluggable, so I never realized it. This change uses a spinlock to protect a list of workers, which it tears down on disconnect.

References

https://git.kernel.org/stable/c/472d900c8bcac301ae0e40fdca7db799bd989ff5

https://git.kernel.org/stable/c/179ef1127d7a4f09f0e741fa9f30b8a8e7886271

Details

Source: Mitre, NVD

Published: 2026-01-23

Updated: 2026-01-23

Risk Information

CVSS v2

Base Score: 4.9

Vector: CVSS2#AV:L/AC:L/Au:N/C:N/I:N/A:C

Severity: Medium

CVSS v3

Base Score: 5.5

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Severity: Medium

EPSS

EPSS: 0.00018