CVE-2025-21856
7.8
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
In the Linux kernel, the following vulnerability has been resolved:
s390/ism: add release function for struct device
According to device_release() in /drivers/base/core.c, a device without a release function is a broken device and must be fixed.
The current code directly frees the device after calling device_add() without waiting for other kernel parts to release their references. Thus, a reference could still be held to a struct device, e.g., by sysfs, leading to potential use-after-free issues if a proper release function is not set.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 8c81ba20349daf9f7e58bb05a0c12f4b71813a30 < 940d15254d2216b585558bcf36312da50074e711 | affected |
| Linux | Linux | 8c81ba20349daf9f7e58bb05a0c12f4b71813a30 < 0505ff2936f166405d81d0d454a81d9c14124344 | affected |
| Linux | Linux | 8c81ba20349daf9f7e58bb05a0c12f4b71813a30 < e26e8ac27351f457091459a0a355bacd06d5bb2b | affected |
| Linux | Linux | 8c81ba20349daf9f7e58bb05a0c12f4b71813a30 < 915e34d5ad35a6a9e56113f852ade4a730fb88f0 | affected |
| Linux | Linux | 6.3 | affected |
| Linux | Linux | 0 < 6.3 | unaffected |
| Linux | Linux | 6.6.80 <= 6.6.* | unaffected |
| Linux | Linux | 6.12.17 <= 6.12.* | unaffected |
| Linux | Linux | 6.13.5 <= 6.13.* | unaffected |
| Linux | Linux | 6.14 <= * | unaffected |
Weaknesses
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: total
References
- https://git.kernel.org/stable/c/940d15254d2216b585558bcf36312da50074e711
- https://git.kernel.org/stable/c/0505ff2936f166405d81d0d454a81d9c14124344
- https://git.kernel.org/stable/c/e26e8ac27351f457091459a0a355bacd06d5bb2b
- https://git.kernel.org/stable/c/915e34d5ad35a6a9e56113f852ade4a730fb88f0
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.