-

CVE-2025-68354

EPSS 0.07%
Veröffentlicht 24.12.2025 10:32:44
Zuletzt bearbeitet 15.04.2026 00:35:42
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

regulator: core: Protect regulator_supply_alias_list with regulator_list_mutex

In the Linux kernel, the following vulnerability has been resolved:

regulator: core: Protect regulator_supply_alias_list with regulator_list_mutex

regulator_supply_alias_list was accessed without any locking in
regulator_supply_alias(), regulator_register_supply_alias(), and
regulator_unregister_supply_alias(). Concurrent registration,
unregistration and lookups can race, leading to:

1 use-after-free if an alias entry is removed while being read,
2 duplicate entries when two threads register the same alias,
3 inconsistent alias mappings observed by consumers.

Protect all traversals, insertions and deletions on
regulator_supply_alias_list with the existing regulator_list_mutex.

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 11

CNA 2 VulnDex Vulnerability Enrichment 13

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version a06ccd9c3785fa5550917ae036944f4e080b5749

Version < e1587064137028e7edcca14fb766b68d27bec94b

Status affected

Version a06ccd9c3785fa5550917ae036944f4e080b5749

Version < 9d041a7ba13f21adfac052eb3fda1df62f2166c1

Status affected

Version a06ccd9c3785fa5550917ae036944f4e080b5749

Version < a63fbc07d1b34a9821ea3b31ff4e6456f9d0aa61

Status affected

Version a06ccd9c3785fa5550917ae036944f4e080b5749

Version < 09811a83b214cc15521e0d818e43ae9043e9a28d

Status affected

Version a06ccd9c3785fa5550917ae036944f4e080b5749

Version < a9864d42ebcdd394ebb864643b961b36e7b515be

Status affected

Version a06ccd9c3785fa5550917ae036944f4e080b5749

Version < 431a1d44ad4866362cc28fc1cc4ca93d84989239

Status affected

Version a06ccd9c3785fa5550917ae036944f4e080b5749

Version < 64099b5c0aeb70bc7cd5556eb7f59c5b4a5010bf

Status affected

Version a06ccd9c3785fa5550917ae036944f4e080b5749

Version < 0cc15a10c3b4ab14cd71b779fd5c9ca0cb2bc30d

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 3.13

Status affected

Version 0

Version < 3.13

Status unaffected

Version <= 5.10.*

Version 5.10.248

Status unaffected

Version <= 5.15.*

Version 5.15.198

Status unaffected

Version <= 6.1.*

Version 6.1.160

Status unaffected

Version <= 6.6.*

Version 6.6.120

Status unaffected

Version <= 6.12.*

Version 6.12.63

Status unaffected

Version <= 6.17.*

Version 6.17.13

Status unaffected

Version <= 6.18.*

Version 6.18.2

Status unaffected

Version <= *

Version 6.19

Status unaffected

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.07%	0.208

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

Es wurden noch keine Informationen zu CWE veröffentlicht.

https://git.kernel.org/stable/c/a9864d42ebcdd394ebb864643b961b36e7b515be

https://git.kernel.org/stable/c/431a1d44ad4866362cc28fc1cc4ca93d84989239

https://git.kernel.org/stable/c/64099b5c0aeb70bc7cd5556eb7f59c5b4a5010bf

https://git.kernel.org/stable/c/0cc15a10c3b4ab14cd71b779fd5c9ca0cb2bc30d

https://git.kernel.org/stable/c/09811a83b214cc15521e0d818e43ae9043e9a28d

https://git.kernel.org/stable/c/a63fbc07d1b34a9821ea3b31ff4e6456f9d0aa61

https://git.kernel.org/stable/c/9d041a7ba13f21adfac052eb3fda1df62f2166c1

https://git.kernel.org/stable/c/e1587064137028e7edcca14fb766b68d27bec94b

https://nvd.nist.gov/vuln/detail/CVE-2025-68354

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-68354

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-68354

EUVD