CVE-2025-39997

ALSA: usb-audio: fix race condition to UAF in snd_usbmidi_free

 carnil> Introduced in 0718a78f6a9f ("ALSA: usb-audio: Kill timer properly at removal").
 carnil> Vulnerable versions: 6.6.111 6.12.52 6.15.3 6.16.

Branch	Status
upstream	released (6.18-rc1) [9f2c0ac1423d5f267e7f1d1940780fc764b0fee3]
7.0-upstream-stable	N/A "Fixed before branching point"
6.19-upstream-stable	N/A "Fixed before branching point"
6.18-upstream-stable	N/A "Fixed before branching point"
6.17-upstream-stable	released (6.17.1) [353d8c715cc951a980728133c9dd64ca5a0a186c]
6.16-upstream-stable	released (6.16.11) [af600e7f5526d16146b3ae99f6ad57bfea79ca33]
6.12-upstream-stable	N/A "Vulnerable code not present"
6.6-upstream-stable	N/A "Vulnerable code not present"
6.1-upstream-stable	released (6.1.175) [e16985513e89466a236d2a7c202783b4dd0c5a46]
5.10-upstream-stable	N/A "Vulnerable code not present"
sid	released (6.16.11-1)
6.12-trixie-security	N/A "Vulnerable code not present"
6.1-bookworm-security	needed
5.10-bullseye-security	N/A "Vulnerable code not present"