PT-2025-14310 · Linux+9 · Linux Kernel+9

Published

2025-04-01

Updated

2026-04-20

CVE-2025-21929

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A use-after-free issue can occur in the hid ishtp cl remove() function during the rmmod operation for the intel ishtp hid driver. This issue arises because the hid ishtp cl deinit() function is called before ishtp hid remove(), potentially leading to accessing freed memory or resources during the removal process. The issue is resolved by reordering the calls in hid ishtp cl remove() to call ishtp hid remove() before hid ishtp cl deinit().

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

DoS

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

ALSA-2025:12662

ALSA-2025:12746

ALT-PU-2025-5786

BDU:2025-11775

CVE-2025-21929

INFSA-2025_12746

RHSA-2025:12662

RHSA-2025:12746

RHSA-2025_12746

SUSE-SU-2025:01951-1

SUSE-SU-2025:01967-1

SUSE-SU-2025:01972-1

SUSE-SU-2025_01951-1

SUSE-SU-2025_01967-1

SUSE-SU-2025_01972-1

USN-7605-1

USN-7605-2

USN-7606-1

USN-7628-1

USN-7764-1

USN-7764-2

USN-7765-1

USN-7766-1

USN-7767-1

USN-7767-2

USN-7779-1

USN-7790-1

USN-7800-1

USN-7801-1

USN-7801-2

USN-7801-3

USN-7802-1

USN-7809-1

Affected Products

Alt Linux

Almalinux

Astra Linux

Linuxmint

Linux Kernel

Red Hat

Red Os

Rocky Linux

Suse

Ubuntu

PT-2025-14310 · Linux+9 · Linux Kernel+9

CVE-2025-21929

Weakness Enumeration

Related Identifiers

Affected Products

References · 1116