CVE-2025-68204

In the Linux kernel, the following vulnerability has been resolved:<br /> <br /> pmdomain: arm: scmi: Fix genpd leak on provider registration failure<br /> <br /> If of_genpd_add_provider_onecell() fails during probe, the previously<br /> created generic power domains are not removed, leading to a memory leak<br /> and potential kernel crash later in genpd_debug_add().<br /> <br /> Add proper error handling to unwind the initialized domains before<br /> returning from probe to ensure all resources are correctly released on<br /> failure.<br /> <br /> Example crash trace observed without this fix:<br /> <br /> | Unable to handle kernel paging request at virtual address fffffffffffffc70<br /> | CPU: 1 UID: 0 PID: 1 Comm: swapper/0 Not tainted 6.18.0-rc1 #405 PREEMPT<br /> | Hardware name: ARM LTD ARM Juno Development Platform/ARM Juno Development Platform<br /> | pstate: 00000005 (nzcv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)<br /> | pc : genpd_debug_add+0x2c/0x160<br /> | lr : genpd_debug_init+0x74/0x98<br /> | Call trace:<br /> | genpd_debug_add+0x2c/0x160 (P)<br /> | genpd_debug_init+0x74/0x98<br /> | do_one_initcall+0xd0/0x2d8<br /> | do_initcall_level+0xa0/0x140<br /> | do_initcalls+0x60/0xa8<br /> | do_basic_setup+0x28/0x40<br /> | kernel_init_freeable+0xe8/0x170<br /> | kernel_init+0x2c/0x140<br /> | ret_from_fork+0x10/0x20