CVE-2025-39833

mISDN: hfcpci: Fix warning when deleting uninitialized timer

References

Debian security tracker
cve.org

Notes

 carnil> Introduced in 87c5fa1bb426 ("mISDN: Add different different timer settings for
 carnil> hfc-pci")
 carnil> 175302f6b79e ("mISDN: hfcpci: Fix use-after-free bug in hfcpci_softirq").
 carnil> Vulnerable versions: 2.6.29.

Bugs

Status

Branch	Status
upstream	released (6.17-rc4) [97766512a9951b9fd6fc97f1b93211642bb0b220]
6.18-upstream-stable	N/A "Fixed before branching point"
6.17-upstream-stable	N/A "Fixed before branching point"
6.16-upstream-stable	released (6.16.5) [43fc5da8133badf17f5df250ba03b9d882254845]
6.12-upstream-stable	needed
6.6-upstream-stable	needed
6.1-upstream-stable	needed
5.10-upstream-stable	needed
sid	released (6.16.5-1)
6.12-trixie-security	needed
6.1-bookworm-security	needed
5.10-bullseye-security	needed