David Dai

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** A use-after-free issue has been identified in the Linux kernel, specifically in the `remove phb dynamic()` function. This issue occurs when the `device unregister()` function is called, potentially freeing the `phb` resource while it is still being used. This can lead to a crash, particularly when `slub debug` and `page poison` are enabled. The issue is related to the `release resource()` function and the `remove phb dynamic()` function. **Recommendations** To resolve this issue, take a reference to the `host bridge->dev` until the `phb` is no longer in use. Then, when the reference is dropped, the `phb` will be freed, preventing the use-after-free issue. As a temporary workaround, consider restricting access to the vulnerable `remove phb dynamic()` function until a patch is available.