PT-2025-42271 · Linux+1 · Linux Kernel+1

Published

2025-09-28

Updated

2026-03-07

CVE-2025-39997

CVSS v2.0

4.6

Medium

Vector

AV:L/AC:L/Au:S/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A race condition leading to a Use-After-Free (UAF) issue exists in the ALSA subsystem, specifically within the snd usbmidi free function related to USB audio. A previous commit aimed to address a UAF, but the fix introduced a race condition where memory could still be accessed after being freed, potentially due to missing cleanup for URB (USB Request Block). This can occur in interrupt context related to URB, leading to a UAF. The issue stems from the order in which the error timer and URB are killed relative to freeing heap memory.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

BDU:2026-02689

CVE-2025-39997

OPENSUSE-SU-2025:15671-1

OPENSUSE-SU-2025:20091-1

OPENSUSE-SU-2026:10301-1

SUSE-SU-2025:21040-1

SUSE-SU-2025:21052-1

SUSE-SU-2025:21056-1

SUSE-SU-2025:21064-1

SUSE-SU-2025:21080-1

SUSE-SU-2025:21147-1

SUSE-SU-2025:21180-1

SUSE-SU-2025:4057-1

SUSE-SU-2025:4128-1

SUSE-SU-2025:4132-1

SUSE-SU-2025:4140-1

SUSE-SU-2025:4141-1

SUSE-SU-2025:4189-1

SUSE-SU-2025:4301-1

Affected Products

Linux Kernel

Suse

PT-2025-42271 · Linux+1 · Linux Kernel+1

CVE-2025-39997

Weakness Enumeration

Related Identifiers

Affected Products

References · 1366