Description
In the Linux kernel, the following vulnerability has been resolved: crypto: atmel-sha204a - Fix potential UAF and memory leak in remove path Unregister the hwrng to prevent new ->read() calls and flush the Atmel I2C workqueue before teardown to prevent a potential UAF if a queued callback runs while the device is being removed. Drop the early return to ensure sysfs entries are removed and ->hwrng.priv is freed, preventing a memory leak.
Product status
da001fb651b00e1deeaf24767dd691ae8152a4f5 (git) before 6dbeb0f788582e1ab5dfc3f41994eac0ec88c2b5
da001fb651b00e1deeaf24767dd691ae8152a4f5 (git) before c5a45d14234bf26e28a89e3a5dcc08336595cf11
da001fb651b00e1deeaf24767dd691ae8152a4f5 (git) before 775c00d87c385b758da9504cf053acea00e2ed40
da001fb651b00e1deeaf24767dd691ae8152a4f5 (git) before 1193c12126d39bf986a5a9214827b73707b193ab
da001fb651b00e1deeaf24767dd691ae8152a4f5 (git) before 31901371ccd16b42d2f167b1018ba9ae8bd5a6c7
da001fb651b00e1deeaf24767dd691ae8152a4f5 (git) before bab1adf3b87e4bfac92c4f5963c63db434d561c1
5.3
Any version before 5.3
6.1.175 (semver)
6.6.140 (semver)
6.12.86 (semver)
6.18.27 (semver)
7.0.4 (semver)
7.1-rc1 (original_commit_for_fix)
References
git.kernel.org/...c/6dbeb0f788582e1ab5dfc3f41994eac0ec88c2b5
git.kernel.org/...c/c5a45d14234bf26e28a89e3a5dcc08336595cf11
git.kernel.org/...c/775c00d87c385b758da9504cf053acea00e2ed40
git.kernel.org/...c/1193c12126d39bf986a5a9214827b73707b193ab
git.kernel.org/...c/31901371ccd16b42d2f167b1018ba9ae8bd5a6c7
git.kernel.org/...c/bab1adf3b87e4bfac92c4f5963c63db434d561c1