2 matches found
CVE-2025-39997
CVE-2025-39997: Linux kernel ALSA USB-Audio snd_usbmidi_free race to use-after-free. Root cause: an error timer kill added by commit 0718a78f (ALSA: usb-audio) runs after endpoint deletion, enabling a rare UAF in interrupt context; missing urb cleanup can also access freed memory. The fix is to k...
AZL-64505 CVE-2025-38105 affecting package kernel for versions less than 6.6.112.1-1
In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Kill timer properly at removal The USB-audio MIDI code initializes the timer, but in a rare case, the driver might be freed without the disconnect call. This leaves the timer in an active state while the assigned...