APPLIED: [SRU][P][PATCH 0/2] CVE-2025-38056
Stefan Bader
stefan.bader at canonical.com
Thu Jul 10 07:09:50 UTC 2025
On 02.07.25 16:17, Juerg Haefliger wrote:
> https://ubuntu.com/security/CVE-2025-38056
>
>
> [ Impact ]
>
> Use-after-free on module reload.
>
>
> [ Test Case ]
>
> Compile-tested only.
>
>
> [ Where Problems Could Occur ]
>
> Isolated to snd-sof-intel-hda module. Problems might show up when
> this driver is loaded/used.
>
>
> Raag Jadav (1):
> devres: Introduce devm_kmemdup_array()
>
> Tavian Barnes (1):
> ASoC: SOF: Intel: hda: Fix UAF when reloading module
>
> include/linux/device.h | 5 +++++
> sound/soc/sof/intel/hda.c | 16 +++++++++++++++-
> 2 files changed, 20 insertions(+), 1 deletion(-)
>
Applied to plucky:linux/master-next. Thanks.
-Stefan
-------------- next part --------------
A non-text attachment was scrubbed...
Name: OpenPGP_0xE8675DEECBEECEA3.asc
Type: application/pgp-keys
Size: 47863 bytes
Desc: OpenPGP public key
URL: <https://lists.ubuntu.com/archives/kernel-team/attachments/20250710/85bcb8fb/attachment-0001.key>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: OpenPGP_signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: OpenPGP digital signature
URL: <https://lists.ubuntu.com/archives/kernel-team/attachments/20250710/85bcb8fb/attachment-0001.sig>
More information about the kernel-team
mailing list