CVE-2025-40344

Linux Kernel 6.12.0-6.12.57, 6.13.0-6.17.7 - Use-After-Free in ASoC Intel AVS DAI Shutdown

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: ASoC: Intel: avs: Disable periods-elapsed work when closing PCM avs_dai_fe_shutdown() handles the shutdown procedure for HOST HDAudio stream while period-elapsed work services its IRQs. As the former frees the DAI's private context, these two operations shall be synchronized to avoid slab-use-after-free or worse errors.

References (3)

Core 3

Core References

Patch

https://git.kernel.org/stable/c/ca6d2b7aca778afbf8c0c4b330d10cb228c14052

Patch

https://git.kernel.org/stable/c/b41fca4aa60be896ba8a81b57aac5dcc6eee66c0

Patch

https://git.kernel.org/stable/c/845f716dc5f354c719f6fda35048b6c2eca99331

Scores

EPSS 0.0002

EPSS Percentile 7.1%

Details

Status published

Products (12)

linux/Kernel 6.12.0 - 6.12.58linux

linux/Kernel 6.13.0 - 6.17.8linux

Linux/Linux < 6.12

Linux/Linux 0dbb186c3510cad4e9f443e801bf2e6ab5770c00 - 845f716dc5f354c719f6fda35048b6c2eca99331

Linux/Linux 0dbb186c3510cad4e9f443e801bf2e6ab5770c00 - b41fca4aa60be896ba8a81b57aac5dcc6eee66c0

Linux/Linux 0dbb186c3510cad4e9f443e801bf2e6ab5770c00 - ca6d2b7aca778afbf8c0c4b330d10cb228c14052

Linux/Linux 31087af37d6b1586b76d4acf3e0c1634a4617ba6

Linux/Linux 6.11.9 - 6.12

Linux/Linux 6.12

Linux/Linux 6.12.58 - 6.12.*

... and 2 more

Published Dec 09, 2025

Tracked Since Feb 18, 2026