CVE-2025-37916

In the Linux kernel, the following vulnerability has been resolved:<br /> <br /> pds_core: remove write-after-free of client_id<br /> <br /> A use-after-free error popped up in stress testing:<br /> <br /> [Mon Apr 21 21:21:33 2025] BUG: KFENCE: use-after-free write in pdsc_auxbus_dev_del+0xef/0x160 [pds_core]<br /> [Mon Apr 21 21:21:33 2025] Use-after-free write at 0x000000007013ecd1 (in kfence-#47):<br /> [Mon Apr 21 21:21:33 2025] pdsc_auxbus_dev_del+0xef/0x160 [pds_core]<br /> [Mon Apr 21 21:21:33 2025] pdsc_remove+0xc0/0x1b0 [pds_core]<br /> [Mon Apr 21 21:21:33 2025] pci_device_remove+0x24/0x70<br /> [Mon Apr 21 21:21:33 2025] device_release_driver_internal+0x11f/0x180<br /> [Mon Apr 21 21:21:33 2025] driver_detach+0x45/0x80<br /> [Mon Apr 21 21:21:33 2025] bus_remove_driver+0x83/0xe0<br /> [Mon Apr 21 21:21:33 2025] pci_unregister_driver+0x1a/0x80<br /> <br /> The actual device uninit usually happens on a separate thread<br /> scheduled after this code runs, but there is no guarantee of order<br /> of thread execution, so this could be a problem. There&amp;#39;s no<br /> actual need to clear the client_id at this point, so simply<br /> remove the offending code.