VYPR
Unrated severityNVD Advisory· Published Dec 16, 2025· Updated Apr 15, 2026

CVE-2025-68290

CVE-2025-68290

Description

In the Linux kernel, the following vulnerability has been resolved:

most: usb: fix double free on late probe failure

The MOST subsystem has a non-standard registration function which frees the interface on registration failures and on deregistration.

This unsurprisingly leads to bugs in the MOST drivers, and a couple of recent changes turned a reference underflow and use-after-free in the USB driver into several double free and a use-after-free on late probe failures.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

103

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.