2 matches found
SUSE CVE-2025-38031
In the Linux kernel, the following vulnerability has been resolved: padata: do not leak refcount in reorderwork A recent patch that addressed a UAF introduced a reference count leak: the paralleldata refcount is incremented unconditionally, regardless of the return value of queuework. If the work...
CVE-2025-21726
In CVE-2025-21726, the Linux kernel padata subsystem had a use-after-free (UAF) in the reorder_work path. The root cause was that the previous patch did not hold a reference to 'pd' long enough when queuing reorder_work. The fix is to take a reference to 'pd' before queuing reorder_work and to ke...