CVE-2025-68779

In the Linux kernel, the following vulnerability has been resolved:<br /> <br /> net/mlx5e: Avoid unregistering PSP twice<br /> <br /> PSP is unregistered twice in:<br /> _mlx5e_remove -&gt; mlx5e_psp_unregister<br /> mlx5e_nic_cleanup -&gt; mlx5e_psp_unregister<br /> <br /> This leads to a refcount underflow in some conditions:<br /> ------------[ cut here ]------------<br /> refcount_t: underflow; use-after-free.<br /> WARNING: CPU: 2 PID: 1694 at lib/refcount.c:28 refcount_warn_saturate+0xd8/0xe0<br /> [...]<br /> mlx5e_psp_unregister+0x26/0x50 [mlx5_core]<br /> mlx5e_nic_cleanup+0x26/0x90 [mlx5_core]<br /> mlx5e_remove+0xe6/0x1f0 [mlx5_core]<br /> auxiliary_bus_remove+0x18/0x30<br /> device_release_driver_internal+0x194/0x1f0<br /> bus_remove_device+0xc6/0x130<br /> device_del+0x159/0x3c0<br /> mlx5_rescan_drivers_locked+0xbc/0x2a0 [mlx5_core]<br /> [...]<br /> <br /> Do not directly remove psp from the _mlx5e_remove path, the PSP cleanup<br /> happens as part of profile cleanup.