Bug 2424947 (CVE-2025-68734)

Summary: CVE-2025-68734 kernel: Linux kernel: Denial of Service due to memory leak in hfcsusb_probe()
Product: [Other] Security Response Reporter: OSIDB Bzimport <bzimport>
Component: vulnerabilityAssignee: Product Security DevOps Team <prodsec-dev>
Status: NEW --- QA Contact:
Severity: low Docs Contact:
Priority: low    
Version: unspecifiedKeywords: Security
Target Milestone: ---   
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: ---
Doc Text:
A flaw was found in the Linux kernel, specifically within the `isdn: mISDN: hfcsusb` module. This memory leak vulnerability occurs when the `hfcsusb_probe()` function fails to properly free allocated memory during an error condition. A local user could exploit this, leading to a continuous loss of system memory. This can result in a Denial of Service (DoS), where the system becomes unstable or unresponsive due to resource exhaustion.
 Story Points: ---
Clone Of: Environment:
Last Closed: Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description OSIDB Bzimport 2025-12-24 12:02:50 UTC 
In the Linux kernel, the following vulnerability has been resolved:

isdn: mISDN: hfcsusb: fix memory leak in hfcsusb_probe()

In hfcsusb_probe(), the memory allocated for ctrl_urb gets leaked when
setup_instance() fails with an error code. Fix that by freeing the urb
before freeing the hw structure. Also change the error paths to use the
goto ladder style.

Compile tested only. Issue found using a prototype static analysis tool.
Comment 1 Alexander B 2025-12-25 13:51:26 UTC 
Upstream advisory:
https://lore.kernel.org/linux-cve-announce/2025122453-CVE-2025-68734-6403@gregkh/T