SUSE CVE-2025-40037

In the Linux kernel, the following vulnerability has been resolved: fbdev: simplefb: Fix use after free in simplefbdetachgenpds The pmdomain cleanup can not be devres managed as it uses struct simplefbpar which is allocated within struct fbinfo by framebufferalloc. This allocation is explicitly...

CVE-2025-40037 fbdev: simplefb: Fix use after free in simplefb_detach_genpds()

In the Linux kernel, the following vulnerability has been resolved: fbdev: simplefb: Fix use after free in simplefbdetachgenpds The pmdomain cleanup can not be devres managed as it uses struct simplefbpar which is allocated within struct fbinfo by framebufferalloc. This allocation is explicitly...

CVE-2025-40037 fbdev: simplefb: Fix use after free in simplefb_detach_genpds()

In the Linux kernel, the following vulnerability has been resolved: fbdev: simplefb: Fix use after free in simplefbdetachgenpds The pmdomain cleanup can not be devres managed as it uses struct simplefbpar which is allocated within struct fbinfo by framebufferalloc. This allocation is explicitly...

CVE-2025-40037

CVE-2025-40037 is a Linux kernel use-after-free in the fbdev/simplefb path. The issue arises during device removal when pm_domain cleanup uses a struct simplefb_par allocated inside struct fb_info by framebuffer_alloc(); it was previously freed by unregister_framebuffer(), but devres cleanup runs...

EUVD-2025-36491

In the Linux kernel, the following vulnerability has been resolved: fbdev: simplefb: Fix use after free in simplefbdetachgenpds The pmdomain cleanup can not be devres managed as it uses struct simplefbpar which is allocated within struct fbinfo by framebufferalloc. This allocation is explicitly...