CVE-2025-68282
usb: gadget: udc: fix use-after-free in usb_gadget_state_work
References
Notes
carnil> Introduced in 5702f75375aa9 ("usb: gadget: udc-core: move sysfs_notify() to a
carnil> workqueue"). Vulnerable versions: 3.12.
Bugs
Status
| Branch |
Status |
| upstream |
released (6.18) [baeb66fbd4201d1c4325074e78b1f557dff89b5b]
|
| 6.18-upstream-stable |
N/A "Fixed before branching point"
|
| 6.17-upstream-stable |
released (6.17.11) [3b32caa73d135eea8fb9cabb45e9fc64c5a3ecb9]
|
| 6.12-upstream-stable |
released (6.12.61) [10014310193cf6736c1aeb4105c5f4a0818d0c65]
|
| 6.6-upstream-stable |
released (6.6.119) [f02a412c0a18f02f0f91b0a3d9788315a721b7fd]
|
| 6.1-upstream-stable |
released (6.1.159) [c12a0c3ef815ddd67e47f9c819f9fe822fed5467]
|
| 5.10-upstream-stable |
needed
|
| sid |
released (6.17.11-1)
|
| 6.12-trixie-security |
released (6.12.63-1)
|
| 6.1-bookworm-security |
released (6.1.159-1)
|
| 5.10-bullseye-security |
needed
|
