CVE-2025-39711

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A flaw exists in the Linux kernel related to the media subsystem, specifically within the Intel Video Subsystem Controller (IVSC) driver. Missing mei cldev disable() calls in the ACE and CSI driver's remove functions can lead to a use-after-free condition during system shutdown. This occurs because the mei cl client remains in the mei device->file list even after its memory is freed, resulting in a crash when mei cl all disconnect() attempts to dereference the freed memory. The issue manifests as a KASAN report indicating a slab-use-after-free in mei cl set disconnected().

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

BDU:2025-15207

CVE-2025-39711

DSA-6008-1

MGASA-2025-0234

MGASA-2025-0235

OPENSUSE-SU-2025:20081-1

SUSE-SU-2025:03601-1

SUSE-SU-2025:03633-1

SUSE-SU-2025:21074-1

SUSE-SU-2025:21139-1

SUSE-SU-2025:21179-1

SUSE-SU-2025:3725-1

USN-8028-1

USN-8028-2

USN-8028-3

USN-8028-4

USN-8028-5

USN-8028-6

USN-8028-7

USN-8028-8

USN-8031-1

USN-8031-2

USN-8031-3

USN-8052-1

USN-8052-2

USN-8074-1

USN-8074-2

USN-8126-1

Affected Products

Astra Linux

Intel Video Subsystem Controller (Ivsc) Driver

Linuxmint

Linux Kernel

Suse

Ubuntu

CVE-2025-39711

Weakness Enumeration

Related Identifiers

Affected Products

References · 2604