CVE-2025-68324

EPSS 0.04%
Veröffentlicht 18.12.2025 15:16:06
Zuletzt bearbeitet 19.12.2025 18:00:54
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

In the Linux kernel, the following vulnerability has been resolved:

scsi: imm: Fix use-after-free bug caused by unfinished delayed work

The delayed work item 'imm_tq' is initialized in imm_attach() and
scheduled via imm_queuecommand() for processing SCSI commands.  When the
IMM parallel port SCSI host adapter is detached through imm_detach(),
the imm_struct device instance is deallocated.

However, the delayed work might still be pending or executing
when imm_detach() is called, leading to use-after-free bugs
when the work function imm_interrupt() accesses the already
freed imm_struct memory.

The race condition can occur as follows:

CPU 0(detach thread)   | CPU 1
                       | imm_queuecommand()
                       |   imm_queuecommand_lck()
imm_detach()           |     schedule_delayed_work()
  kfree(dev) //FREE    | imm_interrupt()
                       |   dev = container_of(...) //USE
                           dev-> //USE

Add disable_delayed_work_sync() in imm_detach() to guarantee proper
cancellation of the delayed work item before imm_struct is deallocated.

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 7

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version < 31ab2aad7a7b7501e904a09bf361e44671f66092

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

Version < 48dd41fa2d6c6a0c50e714deeba06ffe7f91961b

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

Version < 9e434426cc23ad5e2aad649327b59aea00294b13

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

Version < ab58153ec64fa3fc9aea09ca09dc9322e0b54a7c

Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 2.6.12

Status affected

Version < 2.6.12

Version 0

Status unaffected

Version <= 6.12.*

Version 6.12.63

Status unaffected

Version <= 6.17.*

Version 6.17.13

Status unaffected

Version <= 6.18.*

Version 6.18.2

Status unaffected

Version <= *

Version 6.19-rc1

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.04%	0.11

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

Es wurden noch keine Informationen zu CWE veröffentlicht.

https://git.kernel.org/stable/c/31ab2aad7a7b7501e904a09bf361e44671f66092

https://git.kernel.org/stable/c/48dd41fa2d6c6a0c50e714deeba06ffe7f91961b

https://git.kernel.org/stable/c/9e434426cc23ad5e2aad649327b59aea00294b13

https://git.kernel.org/stable/c/ab58153ec64fa3fc9aea09ca09dc9322e0b54a7c

https://nvd.nist.gov/vuln/detail/CVE-2025-68324

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-68324

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-68324

EUVD