Linux Kernel Intel-ISH HID Driver Use-After-Free Vulnerability

Vulnerability

A use-after-free vulnerability has been identified in the Intel-ISH HID driver of the Linux kernel. This issue arises in the 'ishtp_hid_remove()' function, where 'driver_data' is freed prematurely while the function is still processing HID devices. The early deallocation can lead to accessing invalid memory, causing random system crashes shortly after the driver is removed. The vulnerability occurs because 'hid_destroy_device()' relies on 'driver_data' to turn off the sensor, and freeing it beforehand disrupts proper memory management.

Impact

Exploitation of this vulnerability can lead to a random system crash, caused by accessing freed memory, which disrupts normal operations and can potentially cause data loss or corruption.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Intel-ISH HID Driver Use-After-Free Vulnerability

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating