PT-2025-16579 · Linux+11 · Linux Kernel+11

Published

2025-03-17

Updated

2026-04-20

CVE-2025-22020

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.14.0-rc6+

Description A slab-use-after-free issue has been identified in the Linux kernel, specifically in the rtsx usb ms driver. This issue can cause a crash when the rtsx usb ms poll card function is called. The problem occurs when memory is freed by one task and then accessed by another task, leading to a use-after-free error. The estimated number of potentially affected devices worldwide is not specified. There is no information about real-world incidents where this issue was exploited.

Recommendations To resolve this issue, update the Linux kernel to a version newer than 6.14.0-rc6+. As a temporary workaround, consider disabling the rtsx usb ms driver until a patch is available. Restrict access to the vulnerable rtsx usb ms poll card function to minimize the risk of exploitation. Avoid using the rtsx usb ms driver in sensitive environments until the issue is resolved. At the moment, there is no information about additional mitigation measures.

Exploit

Fix

DoS

LPE

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

ALSA-2025:12662

ALSA-2025:12746

ALSA-2025:12752

ALSA-2025:12753

ALT-PU-2025-12647

ALT-PU-2025-6382

ALT-PU-2025-6606

ALT-PU-2025-7195

BDU:2025-12077

CESA-2025_12752

CESA-2025_12753

CVE-2025-22020

DLA-4178-1

DLA-4193-1

ECHO-E692-5BCC-0876

INFSA-2025_12746

INFSA-2025_12752

INFSA-2025_12753

MGASA-2025-0142

MGASA-2025-0146

OPENSUSE-SU-2025_01614-1

OPENSUSE-SU-2025_01620-1

OPENSUSE-SU-2025_01627-1

OPENSUSE-SU-2025_01633-1

OPENSUSE-SU-2025_01640-1

OPENSUSE-SU-2025_01707-1

RHSA-2025:12662

RHSA-2025:12746

RHSA-2025:12752

RHSA-2025:12753

RHSA-2025:13633

RHSA-2025:13781

RHSA-2025:13946

RHSA-2025:14054

RHSA-2025:14094

RHSA-2025:14418

RHSA-2025_12746

RHSA-2025_12752

RHSA-2025_12753

SUSE-SU-2025:01614-1

SUSE-SU-2025:01620-1

SUSE-SU-2025:01627-1

SUSE-SU-2025:01633-1

SUSE-SU-2025:01640-1

SUSE-SU-2025:01707-1

SUSE-SU-2025:01919-1

SUSE-SU-2025:01951-1

SUSE-SU-2025:01964-1

SUSE-SU-2025:01967-1

SUSE-SU-2025:1573-1

SUSE-SU-2025:1574-1

SUSE-SU-2025:20343-1

SUSE-SU-2025:20344-1

SUSE-SU-2025:20354-1

SUSE-SU-2025:20355-1

SUSE-SU-2025_01614-1

SUSE-SU-2025_01620-1

SUSE-SU-2025_01627-1

SUSE-SU-2025_01633-1

SUSE-SU-2025_01707-1

SUSE-SU-2025_01951-1

SUSE-SU-2025_01964-1

SUSE-SU-2025_01967-1

USN-7585-1

USN-7585-2

USN-7585-3

USN-7585-4

USN-7585-5

USN-7585-6

USN-7585-7

USN-7591-1

USN-7591-2

USN-7591-3

USN-7591-4

USN-7591-5

USN-7591-6

USN-7592-1

USN-7593-1

USN-7594-1

USN-7594-2

USN-7594-3

USN-7597-1

USN-7597-2

USN-7598-1

USN-7602-1

USN-7605-1

USN-7605-2

USN-7606-1

USN-7628-1

USN-7640-1

USN-7655-1

USN-7835-1

USN-7835-2

USN-7835-3

USN-7835-4

USN-7835-5

USN-7835-6

USN-7887-1

USN-7887-2

USN-7940-1

USN-7940-2

Affected Products

Alt Linux

Almalinux

Astra Linux

Centos

Debian

Linuxmint

Linux Kernel

Red Hat

Red Os

Rocky Linux

Suse

Ubuntu

PT-2025-16579 · Linux+11 · Linux Kernel+11

CVE-2025-22020

Weakness Enumeration

Related Identifiers

Affected Products

References · 2246