CVE-2025-68312

Summary

In the Linux kernel, the following vulnerability has been resolved:

usbnet: Prevents free active kevent

The root cause of this issue are:

  1. When probing the usbnet device, executing usbnet_link_change(dev, 0, 0); put the kevent work in global workqueue. However, the kevent has not yet been scheduled when the usbnet device is unregistered. Therefore, executing free_netdev() results in the "free active object (kevent)" error reported here.

  2. Another factor is that when calling usbnet_disconnect()->unregister_netdev(), if the usbnet device is up, ndo_stop() is executed to cancel the kevent. However, because the device is not up, ndo_stop() is not executed.

The solution to this problem is to cancel the kevent before executing free_netdev().

Affected Software

VendorProductVersion RangeStatus
LinuxLinux8b4588b8b00b299be16a35be67b331d8fdba03f3 < 285d4b953f2ca03c358f986718dd89ee9bde632eaffected
LinuxLinux135199a2edd459d2b123144efcd7f9bcd95128e4 < 88a38b135d69f5db9024ff6527232f1b51be8915affected
LinuxLinux635fd8953e4309b54ca6a81bed1d4a87668694f4 < 43005002b60ef3424719ecda16d124714b45da3baffected
LinuxLinuxa69e617e533edddf3fa3123149900f36e0a6dc74 < 3a10619fdefd3051aeb14860e4d4335529b4e94daffected
LinuxLinuxa69e617e533edddf3fa3123149900f36e0a6dc74 < 9a579d6a39513069d298eee70770bbac8a148565affected
LinuxLinuxa69e617e533edddf3fa3123149900f36e0a6dc74 < 2ce1de32e05445d77fc056f6ff8339cfb78a5f84affected
LinuxLinuxa69e617e533edddf3fa3123149900f36e0a6dc74 < 5158fb8da162e3982940f30cd01ed77bdf42c6fcaffected
LinuxLinuxa69e617e533edddf3fa3123149900f36e0a6dc74 < 420c84c330d1688b8c764479e5738bbdbf0a33deaffected
LinuxLinuxd2d6b530d89b0a912148018027386aa049f0a309affected
LinuxLinuxe2a521a7dcc463c5017b4426ca0804e151faeff7affected
LinuxLinux7f77dcbc030c2faa6d8e8a594985eeb34018409eaffected
LinuxLinuxd49bb8cf9bfaa06aa527eb30f1a52a071da2e32faffected
LinuxLinuxdb3b738ae5f726204876f4303c49cfdf4311403faffected
LinuxLinux5.4.211 < 5.4.302affected
LinuxLinux5.10.137 < 5.10.247affected
LinuxLinux5.15.61 < 5.15.197affected
LinuxLinux4.9.326 < 4.10affected
LinuxLinux4.14.291 < 4.15affected
LinuxLinux4.19.256 < 4.20affected
LinuxLinux5.18.18 < 5.19affected
LinuxLinux5.19.2 < 5.20affected
LinuxLinux6.0affected
LinuxLinux0 < 6.0unaffected
LinuxLinux5.4.302 <= 5.4.*unaffected
LinuxLinux5.10.247 <= 5.10.*unaffected
LinuxLinux5.15.197 <= 5.15.*unaffected
LinuxLinux6.1.159 <= 6.1.*unaffected
LinuxLinux6.6.117 <= 6.6.*unaffected
LinuxLinux6.12.58 <= 6.12.*unaffected
LinuxLinux6.17.8 <= 6.17.*unaffected
LinuxLinux6.18 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References