Description
In the Linux kernel, the following vulnerability has been resolved:

tpm: tpm_i2c_infineon: Fix locality leak on get_burstcount() failure

get_burstcount() can return -EBUSY on timeout. When this happens, the
function returns directly without releasing the locality that was
acquired at the beginning of tpm_tis_i2c_send().

Use goto out_err to ensure proper cleanup when get_burstcount() fails.
Published: 2026-05-27
Score: n/a
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The Linux kernel tpm_i2c_infineon driver contains a locality leak: if get_burstcount() returns -EBUSY on timeout, the driver exits without releasing the locality acquired during tpm_tis_i2c_send(). This failure to release the TPM context can leave the device in a locked state, preventing subsequent TPM operations and potentially disrupting any system service that relies on the TPM. The weakness manifests as a resource leak (CWE‑400), which may lead to service interruption for local users with TPM access.

Affected Systems

The vulnerability affects the Linux kernel's tpm_i2c_infineon driver. No specific kernel releases are listed in the advisory, so any kernel version that includes the legacy Infineon TPM driver before the fix may be impacted. The CPE identifier associates the issue with the generic Linux kernel product.

Risk and Exploitability

There is currently no published exploitation evidence and the EPSS score is not available; consequently, the likelihood of exploitation is uncertain but potentially low to moderate. The vulnerability is not present in the CISA KEV catalog, indicating no known widespread exploitation. Nevertheless, a local or privileged attacker who can trigger TPM operations could cause a denial‑of‑service condition by repeatedly invoking a get_burstcount() timeout scenario. The patch resolves the issue by adding a cleanup path to release the locality on failure, eliminating the resource leak.

Generated by OpenCVE AI on May 27, 2026 at 16:19 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the latest kernel patch that implements the get_burstcount cleanup in tpm_i2c_infineon driver.
  • If the patch cannot yet be applied, consider disabling or removing the Infineon TPM driver to prevent stuck locality states.
  • Monitor TPM activity for unexpected timeouts and reset the locality context manually when a stuck state is detected.

Generated by OpenCVE AI on May 27, 2026 at 16:19 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 27 May 2026 16:45:00 +0000

Type Values Removed Values Added
Weaknesses CWE-400

Wed, 27 May 2026 14:15:00 +0000

Type Values Removed Values Added
Description In the Linux kernel, the following vulnerability has been resolved: tpm: tpm_i2c_infineon: Fix locality leak on get_burstcount() failure get_burstcount() can return -EBUSY on timeout. When this happens, the function returns directly without releasing the locality that was acquired at the beginning of tpm_tis_i2c_send(). Use goto out_err to ensure proper cleanup when get_burstcount() fails.
Title tpm: tpm_i2c_infineon: Fix locality leak on get_burstcount() failure
First Time appeared Linux
Linux linux Kernel
CPEs cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Vendors & Products Linux
Linux linux Kernel
References

Subscriptions

Linux Linux Kernel
cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published:

Updated: 2026-05-27T12:17:57.155Z

Reserved: 2026-05-13T15:03:33.087Z

Link: CVE-2026-45941

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-05-27T14:17:10.300

Modified: 2026-05-27T14:48:03.013

Link: CVE-2026-45941

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-27T16:30:36Z

Weaknesses