Description
In the Linux kernel, the following vulnerability has been resolved: most: usb: fix double free on late probe failure The MOST subsystem has a non-standard registration function which frees the interface on registration failures and on deregistration. This unsurprisingly leads to bugs in the MOST drivers, and a couple of recent changes turned a reference underflow and use-after-free in the USB driver into several double free and a use-after-free on late probe failures.
Product status
723de0f9171eeb49a3ae98cae82ebbbb992b3a7c (git) before 90e6ce2b1b19fb8b9d4afee69f40e4c6a4791154
723de0f9171eeb49a3ae98cae82ebbbb992b3a7c (git) before a4c4118c2af284835b16431bbfe77e0130c06fef
723de0f9171eeb49a3ae98cae82ebbbb992b3a7c (git) before 0dece48660be16918ecf2dbdc7193e8be03e1693
723de0f9171eeb49a3ae98cae82ebbbb992b3a7c (git) before 993bfdc3842893c394de13c8200c338ebb979589
723de0f9171eeb49a3ae98cae82ebbbb992b3a7c (git) before 2274767dc02b756b25e3db1e31c0ed47c2a78442
723de0f9171eeb49a3ae98cae82ebbbb992b3a7c (git) before 8d8ffefe3d5d8b7b73efb866db61130107299c5c
723de0f9171eeb49a3ae98cae82ebbbb992b3a7c (git) before baadf2a5c26e802a46573eaad331b427b49aaa36
5.6
Any version before 5.6
5.10.247 (semver)
5.15.197 (semver)
6.1.159 (semver)
6.6.119 (semver)
6.12.61 (semver)
6.17.11 (semver)
6.18 (original_commit_for_fix)
References
git.kernel.org/...c/90e6ce2b1b19fb8b9d4afee69f40e4c6a4791154
git.kernel.org/...c/a4c4118c2af284835b16431bbfe77e0130c06fef
git.kernel.org/...c/0dece48660be16918ecf2dbdc7193e8be03e1693
git.kernel.org/...c/993bfdc3842893c394de13c8200c338ebb979589
git.kernel.org/...c/2274767dc02b756b25e3db1e31c0ed47c2a78442
git.kernel.org/...c/8d8ffefe3d5d8b7b73efb866db61130107299c5c
git.kernel.org/...c/baadf2a5c26e802a46573eaad331b427b49aaa36
Data based on CVE®. Copyright © 1999-2025, The MITRE Corporation. All rights reserved.
