7.8
CVE-2025-21856
- EPSS 0.21%
- Veröffentlicht 12.03.2025 09:42:09
- Zuletzt bearbeitet 01.10.2025 20:18:29
- CVE-Watchlists
- Unerledigt
s390/ism: add release function for struct device
In the Linux kernel, the following vulnerability has been resolved: s390/ism: add release function for struct device According to device_release() in /drivers/base/core.c, a device without a release function is a broken device and must be fixed. The current code directly frees the device after calling device_add() without waiting for other kernel parts to release their references. Thus, a reference could still be held to a struct device, e.g., by sysfs, leading to potential use-after-free issues if a proper release function is not set.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Linux ≫ Linux Kernel Version >= 6.3 < 6.6.80
Linux ≫ Linux Kernel Version >= 6.7 < 6.12.17
Linux ≫ Linux Kernel Version >= 6.13 < 6.13.5
Linux ≫ Linux Kernel Version6.14 Updaterc1
Linux ≫ Linux Kernel Version6.14 Updaterc2
Linux ≫ Linux Kernel Version6.14 Updaterc3
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.21% | 0.107 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.8 | 1.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
| 134c704f-9b21-4f2e-91b3-4a467353bcc0 | 7.8 | 1.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
CWE-416 Use After Free
The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.
https://git.kernel.org/stable/c/940d15254d2216b585558bcf36312da50074e711
https://git.kernel.org/stable/c/0505ff2936f166405d81d0d454a81d9c14124344
https://git.kernel.org/stable/c/e26e8ac27351f457091459a0a355bacd06d5bb2b
https://git.kernel.org/stable/c/915e34d5ad35a6a9e56113f852ade4a730fb88f0