CVE-2025-71075
- Source
- https://cve.org/CVERecord?id=CVE-2025-71075
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-71075.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2025-71075
- Downstream
- Related
- Published
- 2026-01-13T15:31:28.075Z
- Modified
- 2026-03-12T04:32:13.521524Z
- Summary
- scsi: aic94xx: fix use-after-free in device removal path
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
scsi: aic94xx: fix use-after-free in device removal path
The asdpciremove() function fails to synchronize with pending tasklets before freeing the asd_ha structure, leading to a potential use-after-free vulnerability.
When a device removal is triggered (via hot-unplug or module unload), race condition can occur.
The fix adds taskletkill() before freeing the asdha structure, ensuring all scheduled tasklets complete before cleanup proceeds.
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/71xxx/CVE-2025-71075.json", "cna_assigner": "Linux" }- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/278455a82245a572aeb218a6212a416a98e418de
- https://git.kernel.org/stable/c/751c19635c2bfaaf2836a533caa3663633066dcf
- https://git.kernel.org/stable/c/a41dc180b6e1229ae49ca290ae14d82101c148c3
- https://git.kernel.org/stable/c/b3e655e52b98a1d3df41c8e42035711e083099f8
- https://git.kernel.org/stable/c/c8f6f88cd1df35155258285c4f43268b361819df
- https://git.kernel.org/stable/c/e354793a7ab9bb0934ea699a9d57bcd1b48fc27b
- https://git.kernel.org/stable/c/f6ab594672d4cba08540919a4e6be2e202b60007
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/71xxx/CVE-2025-71075.json
- https://nvd.nist.gov/vuln/detail/CVE-2025-71075
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced2908d778ab3e244900c310974e1fc1c69066e450Fixedc8f6f88cd1df35155258285c4f43268b361819dfFixed278455a82245a572aeb218a6212a416a98e418deFixedb3e655e52b98a1d3df41c8e42035711e083099f8Fixede354793a7ab9bb0934ea699a9d57bcd1b48fc27bFixeda41dc180b6e1229ae49ca290ae14d82101c148c3Fixed751c19635c2bfaaf2836a533caa3663633066dcfFixedf6ab594672d4cba08540919a4e6be2e202b60007
Linux / Kernel
Package
- Name
- Kernel
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced2.6.19Fixed5.10.248
- Type
- ECOSYSTEM
- Events
-
Introduced5.11.0Fixed5.15.198
- Type
- ECOSYSTEM
- Events
-
Introduced5.16.0Fixed6.1.160
- Type
- ECOSYSTEM
- Events
-
Introduced6.2.0Fixed6.6.120
- Type
- ECOSYSTEM
- Events
-
Introduced6.7.0Fixed6.12.64
- Type
- ECOSYSTEM
- Events
-
Introduced6.13.0Fixed6.18.3