Volerion logoVolerion
Volerion logoVolerion

Linux Kernel Use-After-Free Vulnerability in ASoC sof_es8336 Driver

Vulnerability

A use-after-free vulnerability has been identified in the Linux kernel's ASoC sof_es8336 driver. The issue arises in the sof_es8336_remove() function, which calls cancel_delayed_work() to cancel a scheduled work item. However, this function does not wait for the work item to complete, potentially allowing the callback to execute after the driver has been removed, leading to a use-after-free condition. This vulnerability affects several versions of the Linux kernel.

Impact

Exploitation of this vulnerability could lead to a use-after-free condition, potentially allowing for memory corruption or arbitrary code execution.

Remediation

The vulnerability has been addressed by modifying the sof_es8336_remove() function to use cancel_delayed_work_sync(), which properly cancels the work item, ensuring it is not running and cannot re-schedule itself. Users should upgrade to the patched version of the Linux kernel.

Added: Sep 15, 2025, 6:56 PM
Updated: Sep 15, 2025, 6:56 PM

Vulnerability Rating

Custom Algorithm
spread
9.0
impact
2.5
exploitability
4.0
remediation
7.7
relevance
0.5
threat
3.2
urgency
2.9
incentive
1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.