CVE-2025-71198
Published: Feb 4, 2026
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: iio: imu: st_lsm6dsx: fix iio_chan_spec for sensors without event detection The st_lsm6dsx_acc_channels array of struct iio_chan_spec has a non-NULL event_spec field, indicating support for IIO events. However, event detection is not supported for all sensors, and if userspace tries to configure accelerometer wakeup events on a sensor device that does not support them (e.g. LSM6DS0), st_lsm6dsx_write_event() dereferences a NULL pointer when trying to write to the wakeup register. Define an additional struct iio_chan_spec array whose members have a NULL event_spec field, and use this array instead of st_lsm6dsx_acc_channels for sensors without event detection capability.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected b5969abfa8b8ed43ebd93479d394f664bd4a5a87 - < 7673167fac9323110973a3300637adba7d45de3aaffected b5969abfa8b8ed43ebd93479d394f664bd4a5a87 - < 4d60ffcdedfe2cdb68a1cde19bb292bc67451629affected b5969abfa8b8ed43ebd93479d394f664bd4a5a87 - < 81ed6e42d6e555dd978c9dd5e3f7c20cb121221baffected b5969abfa8b8ed43ebd93479d394f664bd4a5a87 - < c34e2e2d67b3bb8d5a6d09b0d6dac845cdd13fb3 |
Linux | Linux | affected 5.5unaffected 0 - < 5.5unaffected 6.6.122 - <= 6.6.*unaffected 6.12.68 - <= 6.12.*unaffected 6.18.8 - <= 6.18.*+1 more versions |
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now