CVE-2025-38235
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
HID: appletb-kbd: fix "appletb_backlight" backlight device reference counting
During appletb_kbd_probe, probe attempts to get the backlight device by name. When this happens backlight_device_get_by_name looks for a device in the backlight class which has name "appletb_backlight" and upon finding a match it increments the reference count for the device and returns it to the caller. However this reference is never released leading to a reference leak.
Fix this by decrementing the backlight device reference count on removal via put_device and on probe failure.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 93a0fc48948107e0cc34e1de22c3cb363a8f2783 < 751d5437112a3f387de4ef6d2d1c131068ff7627 | affected |
| Linux | Linux | 93a0fc48948107e0cc34e1de22c3cb363a8f2783 < 4540e41e753a7d69ecd3f5bad51fe620205c3a18 | affected |
| Linux | Linux | 6.15 | affected |
| Linux | Linux | 0 < 6.15 | unaffected |
| Linux | Linux | 6.15.5 <= 6.15.* | unaffected |
| Linux | Linux | 6.16 <= * | unaffected |
Weaknesses
References
- https://git.kernel.org/stable/c/751d5437112a3f387de4ef6d2d1c131068ff7627
- https://git.kernel.org/stable/c/4540e41e753a7d69ecd3f5bad51fe620205c3a18
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.