Name of the Vulnerable Software and Affected Versions Linux Kernel versions prior to v5.4.226

Description The issue is related to a possible use-after-free (UAF) condition in the ibmpex register bmc() function. This condition may occur when the function fails. The actual impact and attack plausibility of this issue have not been proven yet.

Recommendations For Linux Kernel versions prior to v5.4.226, update to version v5.4.226 or later to resolve the issue. As a temporary workaround, consider restricting access to the ibmpex register bmc() function until a patch is available.