Use-After-Free Vulnerability in Linux Kernel HID for Steam Devices
CVE-2025-21923

7.8HIGH

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 1 April 2025

Summary

This vulnerability in the Linux kernel involves a use-after-free condition within the HID Steam driver. When a hid-steam device is detached, the client_hdev responsible for managing hidraw access is expected to be cleaned up promptly. However, due to improper handling, the deferred work intended to reattach the input device may remain scheduled even after the client_hdev is cleaned up. This leads to potential instability, as the memory associated with the client_hdev could be reused inappropriately. A patch has been developed to correct the sequence of operations, ensuring that deferred work is effectively canceled before any cleanup occurs.

Affected Version(s)

Linux e1147961b2145fa61c3078a4a797d9576cde91ab < 026714ec7546de741826324a6a1914c91024d06c

Linux 3e38cbbfa0a128a9d64773240a9eb3bc7bae3b1a

Linux 053fa3888d2a957f4db26c05e503f4c6b9570a30

References

https://git.kernel.org/stable/c/026714ec7546de741826324a6...

https://git.kernel.org/stable/c/a899adf7063c6745aaff1ec86...

https://git.kernel.org/stable/c/ea3f18d2f02629653b7bfe426...

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Apr 1, 2025
Vulnerability Reserved
Dec 29, 2024