CVE-2025-68754

Summary

In the Linux kernel, the following vulnerability has been resolved:

rtc: amlogic-a4: fix double free caused by devm

The clock obtained via devm_clk_get_enabled() is automatically managed by devres and will be disabled and freed on driver detach. Manually calling clk_disable_unprepare() in error path and remove function causes double free.

Remove the redundant clk_disable_unprepare() calls from the probe error path and aml_rtc_remove(), allowing the devm framework to automatically manage the clock lifecycle.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxc89ac9182ee297597f1c6971045382bae19c3f9d < 9fed02c16488050cd4e33e045506336b216d7301affected
LinuxLinuxc89ac9182ee297597f1c6971045382bae19c3f9d < 2e1c79299036614ac32b251d145fad5391f4bcabaffected
LinuxLinuxc89ac9182ee297597f1c6971045382bae19c3f9d < 384150d7a5b60c1086790a8ee07b0629f906cca2affected
LinuxLinux6.13affected
LinuxLinux0 < 6.13unaffected
LinuxLinux6.17.13 <= 6.17.*unaffected
LinuxLinux6.18.2 <= 6.18.*unaffected
LinuxLinux6.19 <= *unaffected

Weaknesses

References