CVE-2025-68170

Severity CVSS v4.0:

Pending analysis

Type:

Unavailable / Other

Publication date:

16/12/2025

Last modified:

18/12/2025

Description

In the Linux kernel, the following vulnerability has been resolved: drm/radeon: Do not kfree() devres managed rdev Since the allocation of the drivers main structure was changed to devm_drm_dev_alloc() rdev is managed by devres and we shouldn&#39;t be calling kfree() on it. This fixes things exploding if the driver probe fails and devres cleans up the rdev after we already free&#39;d it. (cherry picked from commit 16c0681617b8a045773d4d87b6140002fa75b03b)

Impact

References to Advisories, Solutions, and Tools

https://git.kernel.org/stable/c/2413bbd1d692aed245c2aa38a369a1fa7590db84
https://git.kernel.org/stable/c/3328443363a0895fd9c096edfe8ecd372ca9145e
https://git.kernel.org/stable/c/f7482516002a11317912e29577bbf33cf59a0fb1