Description
In the Linux kernel, the following vulnerability has been resolved: usb: gadget: f_subset: Fix unbalanced refcnt in geth_free geth_alloc() increments the reference count, but geth_free() fails to decrement it. This prevents the configuration of attributes via configfs after unlinking the function. Decrement the reference count in geth_free() to ensure proper cleanup.
Product status
02832e56f88a981474ee4c7c141f46fc1b4454f4 (git) before a932b171554714b1bca313b853c7aa9f2930f9aa
02832e56f88a981474ee4c7c141f46fc1b4454f4 (git) before d7d702407b61e96286a15b6e715572f541a8d41c
02832e56f88a981474ee4c7c141f46fc1b4454f4 (git) before 3f5bfc550a40d7493b1cf09540ed6b412b3b82be
02832e56f88a981474ee4c7c141f46fc1b4454f4 (git) before 75776a055b656873319c3830fed471daef3ceb23
02832e56f88a981474ee4c7c141f46fc1b4454f4 (git) before cc8ec610cd14c093a19371691a7ce1ee5421e829
02832e56f88a981474ee4c7c141f46fc1b4454f4 (git) before 3d436670b47415da042452618fb5d8e317ab095f
02832e56f88a981474ee4c7c141f46fc1b4454f4 (git) before 23e4851ce348a329d974e84e828155dda9f52122
02832e56f88a981474ee4c7c141f46fc1b4454f4 (git) before caa27923aacd8a5869207842f2ab1657c6c0c7bc
3.11
Any version before 3.11
5.10.253 (semver)
5.15.203 (semver)
6.1.168 (semver)
6.6.134 (semver)
6.12.81 (semver)
6.18.22 (semver)
6.19.12 (semver)
7.0 (original_commit_for_fix)
References
git.kernel.org/...c/a932b171554714b1bca313b853c7aa9f2930f9aa
git.kernel.org/...c/d7d702407b61e96286a15b6e715572f541a8d41c
git.kernel.org/...c/3f5bfc550a40d7493b1cf09540ed6b412b3b82be
git.kernel.org/...c/75776a055b656873319c3830fed471daef3ceb23
git.kernel.org/...c/cc8ec610cd14c093a19371691a7ce1ee5421e829
git.kernel.org/...c/3d436670b47415da042452618fb5d8e317ab095f
git.kernel.org/...c/23e4851ce348a329d974e84e828155dda9f52122
git.kernel.org/...c/caa27923aacd8a5869207842f2ab1657c6c0c7bc