In the Linux kernel, the following vulnerability has been resolved:
regulator: dummy: force synchronous probing
Sometimes I get a NULL pointer dereference at boot time in kobject_get() with the following call stack:
anatopregulatorprobe() devmregulatorregister() regulatorregister() regulatorresolvesupply() kobjectget()
By placing some extra BUGON() statements I could verify that this is raised because probing of the 'dummy' regulator driver is not completed ('dummyregulator_rdev' is still NULL).
In the JTAG debugger I can see that dummyregulatorprobe() and anatopregulatorprobe() can be run by different kernel threads (kworker/u4:*). I haven't further investigated whether this can be changed or if there are other possibilities to force synchronization between these two probe routines. On the other hand I don't expect much boot time penalty by probing the 'dummy' regulator synchronously.
[ { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@e26f24ca4fb940b15e092796c5993142a2558bd9", "target": { "file": "drivers/regulator/dummy.c" }, "signature_type": "Line", "digest": { "threshold": 0.9, "line_hashes": [ "301584935002387986773386687860895944878", "93260593213811702981714630204085543628", "242446072900523908345479995998469575706", "322797384498274434082216678081484923012" ] }, "deprecated": false, "id": "CVE-2025-22009-1b311ec0", "signature_version": "v1" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@d3b83a1442a09b145006eb4294b1a963c5345c9c", "target": { "file": "drivers/regulator/dummy.c" }, "signature_type": "Line", "digest": { "threshold": 0.9, "line_hashes": [ "301584935002387986773386687860895944878", "93260593213811702981714630204085543628", "242446072900523908345479995998469575706", "322797384498274434082216678081484923012" ] }, "deprecated": false, "id": "CVE-2025-22009-33415f59", "signature_version": "v1" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@5ade367b56c3947c990598df92395ce737bee872", "target": { "file": "drivers/regulator/dummy.c" }, "signature_type": "Line", "digest": { "threshold": 0.9, "line_hashes": [ "301584935002387986773386687860895944878", "93260593213811702981714630204085543628", "242446072900523908345479995998469575706", "322797384498274434082216678081484923012" ] }, "deprecated": false, "id": "CVE-2025-22009-487430c7", "signature_version": "v1" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@8619909b38eeebd3e60910158d7d68441fc954e9", "target": { "file": "drivers/regulator/dummy.c" }, "signature_type": "Line", "digest": { "threshold": 0.9, "line_hashes": [ "301584935002387986773386687860895944878", "93260593213811702981714630204085543628", "242446072900523908345479995998469575706", "322797384498274434082216678081484923012" ] }, "deprecated": false, "id": "CVE-2025-22009-61e1d38c", "signature_version": "v1" } ]