nouveau/dpcd: return EBUSY for aux xfer if the device is asleep

Summary

CVE	CVE-2026-43381
State	PUBLISHED
Assigner	Linux
Source Priority	CVE Program / NVD first with legacy fallback
Published	2026-05-08 15:16:49 UTC
Updated	2026-05-12 14:10:27 UTC
Description	In the Linux kernel, the following vulnerability has been resolved: nouveau/dpcd: return EBUSY for aux xfer if the device is asleep If we have runtime suspended, and userspace wants to use /dev/drm_dp_* then just tell it the device is busy instead of crashing in the GSP code. WARNING: CPU: 2 PID: 565741 at drivers/gpu/drm/nouveau/nvkm/subdev/gsp/rm/r535/rpc.c:164 r535_gsp_msgq_wait+0x9a/0xb0 [nouveau] CPU: 2 UID: 0 PID: 565741 Comm: fwupd Not tainted 6.18.10-200.fc43.x86_64 #1 PREEMPT(lazy) Hardware name: LENOVO 20QTS0PQ00/20QTS0PQ00, BIOS N2OET65W (1.52 ) 08/05/2024 RIP: 0010:r535_gsp_msgq_wait+0x9a/0xb0 [nouveau] This is a simple fix to get backported. We should probably engineer a proper power domain solution to wake up devices and keep them awake while fw updates are happening.

Risk And Classification

EPSS: 0.000240000 probability, percentile 0.070210000 (date 2026-05-11)

Vendor Declared Affected Products

Source	Vendor	Product	Version	Platforms
CNA	Linux	Linux	affected 8894f4919bc43f821775db2cfff4b917871b2102 178df7c91e6c202579284df9f79d1592a514cdcf git	Not specified
CNA	Linux	Linux	affected 8894f4919bc43f821775db2cfff4b917871b2102 4df518aa196085909fd7e32518ecd27fba60ed69 git	Not specified
CNA	Linux	Linux	affected 8894f4919bc43f821775db2cfff4b917871b2102 cd24cab2023aa46b595bc6b9cc39d8973d9d0a8c git	Not specified
CNA	Linux	Linux	affected 8894f4919bc43f821775db2cfff4b917871b2102 fad178ae894930520519ead3c8e0150641466360 git	Not specified
CNA	Linux	Linux	affected 8894f4919bc43f821775db2cfff4b917871b2102 6bdd2d70c338d52c387d3b3aadc596784ae81b01 git	Not specified
CNA	Linux	Linux	affected 8894f4919bc43f821775db2cfff4b917871b2102 ad8fa5bff53f5d1f8394f996850da8ce070eaee3 git	Not specified
CNA	Linux	Linux	affected 8894f4919bc43f821775db2cfff4b917871b2102 24639553a016578222ac597db924dfb6fa5ec8b5 git	Not specified
CNA	Linux	Linux	affected 8894f4919bc43f821775db2cfff4b917871b2102 8f3c6f08ababad2e3bdd239728cf66a9949446b4 git	Not specified
CNA	Linux	Linux	affected 3.16	Not specified
CNA	Linux	Linux	unaffected 3.16 semver	Not specified
CNA	Linux	Linux	unaffected 5.10.253 5.10.* semver	Not specified
CNA	Linux	Linux	unaffected 5.15.203 5.15.* semver	Not specified
CNA	Linux	Linux	unaffected 6.1.167 6.1.* semver	Not specified
CNA	Linux	Linux	unaffected 6.6.130 6.6.* semver	Not specified
CNA	Linux	Linux	unaffected 6.12.78 6.12.* semver	Not specified
CNA	Linux	Linux	unaffected 6.18.19 6.18.* semver	Not specified
CNA	Linux	Linux	unaffected 6.19.9 6.19.* semver	Not specified
CNA	Linux	Linux	unaffected 7.0 * original_commit_for_fix	Not specified

References

Reference	Source	Link	Tags
git.kernel.org/stable/c/8f3c6f08ababad2e3bdd239728cf66a9949446b4	416baaa9-dc9f-4396-8d5f-8c081fb06d67	git.kernel.org
git.kernel.org/stable/c/4df518aa196085909fd7e32518ecd27fba60ed69	416baaa9-dc9f-4396-8d5f-8c081fb06d67	git.kernel.org
git.kernel.org/stable/c/cd24cab2023aa46b595bc6b9cc39d8973d9d0a8c	416baaa9-dc9f-4396-8d5f-8c081fb06d67	git.kernel.org
git.kernel.org/stable/c/178df7c91e6c202579284df9f79d1592a514cdcf	416baaa9-dc9f-4396-8d5f-8c081fb06d67	git.kernel.org
git.kernel.org/stable/c/6bdd2d70c338d52c387d3b3aadc596784ae81b01	416baaa9-dc9f-4396-8d5f-8c081fb06d67	git.kernel.org
git.kernel.org/stable/c/fad178ae894930520519ead3c8e0150641466360	416baaa9-dc9f-4396-8d5f-8c081fb06d67	git.kernel.org
git.kernel.org/stable/c/24639553a016578222ac597db924dfb6fa5ec8b5	416baaa9-dc9f-4396-8d5f-8c081fb06d67	git.kernel.org
git.kernel.org/stable/c/ad8fa5bff53f5d1f8394f996850da8ce070eaee3	416baaa9-dc9f-4396-8d5f-8c081fb06d67	git.kernel.org
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

There are currently no legacy QID mappings associated with this CVE.