CVE-2025-38137

Summary

In the Linux kernel, the following vulnerability has been resolved:

PCI/pwrctrl: Cancel outstanding rescan work when unregistering

It's possible to trigger use-after-free here by:

(a) forcing rescan_work_func() to take a long time and (b) utilizing a pwrctrl driver that may be unloaded for some reason

Cancel outstanding work to ensure it is finished before we allow our data structures to be cleaned up.

[bhelgaas: tidy commit log]

Affected Software

VendorProductVersion RangeStatus
LinuxLinux8f62819aaace77dd85037ae766eb767f8c4417ce < b3ad6d23fec23fbef382ce9ea640c37446593cf5affected
LinuxLinux8f62819aaace77dd85037ae766eb767f8c4417ce < 8b926f237743f020518162c62b93cb7107a2b5ebaffected
LinuxLinux6.11affected
LinuxLinux0 < 6.11unaffected
LinuxLinux6.15.3 <= 6.15.*unaffected
LinuxLinux6.16 <= *unaffected

Weaknesses

References