Description

In the Linux kernel, the following vulnerability has been resolved: ARM: dts: bcm2711: Fix xHCI power-domain During s2idle tests on the Raspberry CM4 the VPU firmware always crashes on xHCI power-domain resume: root@raspberrypi:/sys/power# echo freeze > state [ 70.724347] xhci_suspend finished [ 70.727730] xhci_plat_suspend finished [ 70.755624] bcm2835-power bcm2835-power: Power grafx off [ 70.761127] USB: Set power to 0 [ 74.653040] USB: Failed to set power to 1 (-110) This seems to be caused because of the mixed usage of raspberrypi-power and bcm2835-power at the same time. So avoid the usage of the VPU firmware power-domain driver, which prevents the VPU crash.

INFO

Published Date :

2025-04-08T08:18:01.074Z

Last Modified :

2025-10-01T18:14:52.265Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2025-22011 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-22011.

URL Resource
https://git.kernel.org/stable/c/393947e06867923d4c2be380d46efd03407a8ce2 cve-icon cve-icon
https://git.kernel.org/stable/c/b8a47aa0b3df701d0fc41b3caf78d00571776be0 cve-icon cve-icon
https://git.kernel.org/stable/c/f44fa354a0715577ca32b085f6f60bcf32c748dd cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025040843-CVE-2025-22011-9e83@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2025-22011 cve-icon
https://www.cve.org/CVERecord?id=CVE-2025-22011 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact