In the Linux kernel, the following vulnerability has been resolved:
can: bcm: add missing rcu read protection for procfs content
When the procfs content is generated for a bcm_op which is in the process
to be removed the procfs output might show unreliable data (UAF).
As the removal of bcm_op's is already implemented with rcu handling this
patch adds the missing rcu_read_lock() and makes sure the list entries
are properly removed under rcu protection.
CVSS
No CVSS.
References
Configurations
No configuration.
History
08 Jun 2025, 11:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2025-06-08 11:15
Updated : 2025-06-09 12:15
NVD link : CVE-2025-38003
Mitre link : CVE-2025-38003
CVE.ORG link : CVE-2025-38003
JSON object : View
Products Affected
No product.
CWE
No CWE.