VDB

CISA-2019-25162

CISA-2019-25162 PUBLISHED

Reported by Linux · Published February 26, 2024

In the Linux kernel, the following vulnerability has been resolved: i2c: Fix a potential use after free Free the adap structure only after we are done using it. This patch just moves the put_device() down a bit to avoid the use after free. [wsa: added comment to the code, added Fixes tag]

Affected Products

VendorProductVersions
LinuxLinux611e12ea0f121a31d9e9c4ce2a18a77abc2f28d6, 611e12ea0f121a31d9e9c4ce2a18a77abc2f28d6, 611e12ea0f121a31d9e9c4ce2a18a77abc2f28d6
LinuxLinux4.3, 0, 4.14.291
linuxlinux_kernel4.3, 4.3, 4.3
LinuxLinux611e12ea0f121a31d9e9c4ce2a18a77abc2f28d6, 611e12ea0f121a31d9e9c4ce2a18a77abc2f28d6, 611e12ea0f121a31d9e9c4ce2a18a77abc2f28d6

Timeline

  • Feb 26, 2024 CVE Published
  • May 4, 2025 CVE Updated

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›