Description
In the Linux kernel, the following vulnerability has been resolved:

iio: gyro: mpu3050: Move iio_device_register() to correct location

iio_device_register() should be at the end of the probe function to
prevent race conditions.

Place iio_device_register() at the end of the probe function and place
iio_device_unregister() accordingly.
Published: 2026-05-01
Score: n/a
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A race condition exists in the Linux kernel MPU3050 gyro driver where iio_device_register() is called before the probe function completes; this ordering flaw could allow a local attacker to trigger concurrent probe operations and possibly corrupt kernel memory. Based on the description, the timing violation could lead to kernel state manipulation, which may in turn provide an avenue for privilege escalation.

Affected Systems

Linux kernel builds that include the MPU3050 gyro driver without the recent patch are vulnerable. Since the CNA product list identifies only Linux kernels under the cpe:2.3:o:linux:linux_kernel:* class, the issue applies across all kernel releases containing the unpatched driver, regardless of version specifics.

Risk and Exploitability

The CVSS score has not been disclosed, and the EPSS score is not available, indicating a lack of publicly observed exploitation data. The vulnerability is not present in the CISA KEV catalog. Exploitation would require local access to trigger the probe routine and race condition, making the attack vector local. While no definitive exploitation has been reported, the presence of a race condition that could lead to privilege escalation renders the risk significant for affected systems.

Generated by OpenCVE AI on May 2, 2026 at 13:27 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade the Linux kernel to a version that incorporates the race condition fix for the MPU3050 driver.
  • If upgrading is not possible, apply the upstream patch that moves iio_device_register() to the end of the probe function and adjusts iio_device_unregister() accordingly.
  • If neither patch nor upgrade is feasible, disable or blacklist the MPU3050 driver to eliminate the race condition window.

Generated by OpenCVE AI on May 2, 2026 at 13:27 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Debian DLA Debian DLA DLA-4561-1 linux-6.1 security update
Debian DSA Debian DSA DSA-6243-1 linux security update
History

Sat, 02 May 2026 12:30:00 +0000

Type Values Removed Values Added
Weaknesses CWE-410

Sat, 02 May 2026 00:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-367
References

Fri, 01 May 2026 23:45:00 +0000

Type Values Removed Values Added
Weaknesses CWE-410

Fri, 01 May 2026 14:45:00 +0000

Type Values Removed Values Added
Description In the Linux kernel, the following vulnerability has been resolved: iio: gyro: mpu3050: Move iio_device_register() to correct location iio_device_register() should be at the end of the probe function to prevent race conditions. Place iio_device_register() at the end of the probe function and place iio_device_unregister() accordingly.
Title iio: gyro: mpu3050: Move iio_device_register() to correct location
First Time appeared Linux
Linux linux Kernel
CPEs cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Vendors & Products Linux
Linux linux Kernel
References

Subscriptions

Linux Linux Kernel
cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published:

Updated: 2026-05-01T14:14:53.223Z

Reserved: 2026-03-09T15:48:24.139Z

Link: CVE-2026-31761

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-05-01T15:16:39.153

Modified: 2026-05-01T15:24:14.893

Link: CVE-2026-31761

cve-icon Redhat

Severity :

Publid Date: 2026-05-01T00:00:00Z

Links: CVE-2026-31761 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-05-02T13:30:43Z

Weaknesses