CVE-2026-43381

ANALYSIS PENDING

nouveau/dpcd: return EBUSY for aux xfer if the device is asleep

Title source: cna
STIX 2.1

Description

In the Linux kernel, the following vulnerability has been resolved: nouveau/dpcd: return EBUSY for aux xfer if the device is asleep If we have runtime suspended, and userspace wants to use /dev/drm_dp_* then just tell it the device is busy instead of crashing in the GSP code. WARNING: CPU: 2 PID: 565741 at drivers/gpu/drm/nouveau/nvkm/subdev/gsp/rm/r535/rpc.c:164 r535_gsp_msgq_wait+0x9a/0xb0 [nouveau] CPU: 2 UID: 0 PID: 565741 Comm: fwupd Not tainted 6.18.10-200.fc43.x86_64 #1 PREEMPT(lazy) Hardware name: LENOVO 20QTS0PQ00/20QTS0PQ00, BIOS N2OET65W (1.52 ) 08/05/2024 RIP: 0010:r535_gsp_msgq_wait+0x9a/0xb0 [nouveau] This is a simple fix to get backported. We should probably engineer a proper power domain solution to wake up devices and keep them awake while fw updates are happening.

References (8)

Core 8

Scores

EPSS 0.0003
EPSS Percentile 9.6%

Details

Status published
Products (18)
Linux/Linux < 3.16
Linux/Linux 3.16
Linux/Linux 5.10.253 - 5.10.*
Linux/Linux 5.15.203 - 5.15.*
Linux/Linux 6.1.167 - 6.1.*
Linux/Linux 6.12.78 - 6.12.*
Linux/Linux 6.18.19 - 6.18.*
Linux/Linux 6.19.9 - 6.19.*
Linux/Linux 6.6.130 - 6.6.*
Linux/Linux 7.0
... and 8 more
Published May 08, 2026
Tracked Since May 08, 2026