CVE-2024-26963: usb: dwc3-am62: fix module unload/reload behavior

Description

In the Linux kernel, the following vulnerability has been resolved:

usb: dwc3-am62: fix module unload/reload behavior

As runtime PM is enabled, the module can be runtime
suspended when .remove() is called.

Do a pm_runtime_get_sync() to make sure module is active
before doing any register operations.

Doing a pm_runtime_put_sync() should disable the refclk
so no need to disable it again.

Fixes the below warning at module removel.

[ 39.705310] ------------[ cut here ]------------
[ 39.710004] clk:162:3 already disabled
[ 39.713941] WARNING: CPU: 0 PID: 921 at drivers/clk/clk.c:1090 clk_core_disable+0xb0/0xb8

We called of_platform_populate() in .probe() so call the
cleanup function of_platform_depopulate() in .remove().
Get rid of the now unnnecessary dwc3_ti_remove_core().
Without this, module re-load doesn't work properly.

Classification

CVE ID: CVE-2024-26963

Affected Products

Vendor: Linux

Product: Linux

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.05% (probability of being exploited)

EPSS Percentile: 17.83% (scored less or equal to compared to others)

EPSS Date: 2025-02-04 (when was this score calculated)

References

https://git.kernel.org/stable/c/6c6a45645a2e6a272dfde14eddbb6706de63c25d
https://git.kernel.org/stable/c/7dfed9855397d0df4c6f748d1f66547ab3bad766
https://git.kernel.org/stable/c/629b534c42d04f0797980f2d1ed105fdb8906975
https://git.kernel.org/stable/c/3895780fabd120d0fbd54354014e85207b25687c
https://git.kernel.org/stable/c/6661befe41009c210efa2c1bcd16a5cc4cff8a06

Timeline

2024-12-20 00:35:10 UTC
CVE

usb: dwc3-am62: fix module unload/reload behavior