CVE-2025-68312
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
usbnet: Prevents free active kevent
The root cause of this issue are:
When probing the usbnet device, executing usbnet_link_change(dev, 0, 0); put the kevent work in global workqueue. However, the kevent has not yet been scheduled when the usbnet device is unregistered. Therefore, executing free_netdev() results in the "free active object (kevent)" error reported here.
Another factor is that when calling usbnet_disconnect()->unregister_netdev(), if the usbnet device is up, ndo_stop() is executed to cancel the kevent. However, because the device is not up, ndo_stop() is not executed.
The solution to this problem is to cancel the kevent before executing free_netdev().
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 8b4588b8b00b299be16a35be67b331d8fdba03f3 < 285d4b953f2ca03c358f986718dd89ee9bde632e | affected |
| Linux | Linux | 135199a2edd459d2b123144efcd7f9bcd95128e4 < 88a38b135d69f5db9024ff6527232f1b51be8915 | affected |
| Linux | Linux | 635fd8953e4309b54ca6a81bed1d4a87668694f4 < 43005002b60ef3424719ecda16d124714b45da3b | affected |
| Linux | Linux | a69e617e533edddf3fa3123149900f36e0a6dc74 < 3a10619fdefd3051aeb14860e4d4335529b4e94d | affected |
| Linux | Linux | a69e617e533edddf3fa3123149900f36e0a6dc74 < 9a579d6a39513069d298eee70770bbac8a148565 | affected |
| Linux | Linux | a69e617e533edddf3fa3123149900f36e0a6dc74 < 2ce1de32e05445d77fc056f6ff8339cfb78a5f84 | affected |
| Linux | Linux | a69e617e533edddf3fa3123149900f36e0a6dc74 < 5158fb8da162e3982940f30cd01ed77bdf42c6fc | affected |
| Linux | Linux | a69e617e533edddf3fa3123149900f36e0a6dc74 < 420c84c330d1688b8c764479e5738bbdbf0a33de | affected |
| Linux | Linux | d2d6b530d89b0a912148018027386aa049f0a309 | affected |
| Linux | Linux | e2a521a7dcc463c5017b4426ca0804e151faeff7 | affected |
| Linux | Linux | 7f77dcbc030c2faa6d8e8a594985eeb34018409e | affected |
| Linux | Linux | d49bb8cf9bfaa06aa527eb30f1a52a071da2e32f | affected |
| Linux | Linux | db3b738ae5f726204876f4303c49cfdf4311403f | affected |
| Linux | Linux | 5.4.211 < 5.4.302 | affected |
| Linux | Linux | 5.10.137 < 5.10.247 | affected |
| Linux | Linux | 5.15.61 < 5.15.197 | affected |
| Linux | Linux | 4.9.326 < 4.10 | affected |
| Linux | Linux | 4.14.291 < 4.15 | affected |
| Linux | Linux | 4.19.256 < 4.20 | affected |
| Linux | Linux | 5.18.18 < 5.19 | affected |
| Linux | Linux | 5.19.2 < 5.20 | affected |
| Linux | Linux | 6.0 | affected |
| Linux | Linux | 0 < 6.0 | unaffected |
| Linux | Linux | 5.4.302 <= 5.4.* | unaffected |
| Linux | Linux | 5.10.247 <= 5.10.* | unaffected |
| Linux | Linux | 5.15.197 <= 5.15.* | unaffected |
| Linux | Linux | 6.1.159 <= 6.1.* | unaffected |
| Linux | Linux | 6.6.117 <= 6.6.* | unaffected |
| Linux | Linux | 6.12.58 <= 6.12.* | unaffected |
| Linux | Linux | 6.17.8 <= 6.17.* | unaffected |
| Linux | Linux | 6.18 <= * | unaffected |
Weaknesses
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
- https://git.kernel.org/stable/c/285d4b953f2ca03c358f986718dd89ee9bde632e
- https://git.kernel.org/stable/c/88a38b135d69f5db9024ff6527232f1b51be8915
- https://git.kernel.org/stable/c/43005002b60ef3424719ecda16d124714b45da3b
- https://git.kernel.org/stable/c/3a10619fdefd3051aeb14860e4d4335529b4e94d
- https://git.kernel.org/stable/c/9a579d6a39513069d298eee70770bbac8a148565
- https://git.kernel.org/stable/c/2ce1de32e05445d77fc056f6ff8339cfb78a5f84
- https://git.kernel.org/stable/c/5158fb8da162e3982940f30cd01ed77bdf42c6fc
- https://git.kernel.org/stable/c/420c84c330d1688b8c764479e5738bbdbf0a33de
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.