CVE-2025-68354
Published: Dec 24, 2025
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: regulator: core: Protect regulator_supply_alias_list with regulator_list_mutex regulator_supply_alias_list was accessed without any locking in regulator_supply_alias(), regulator_register_supply_alias(), and regulator_unregister_supply_alias(). Concurrent registration, unregistration and lookups can race, leading to: 1 use-after-free if an alias entry is removed while being read, 2 duplicate entries when two threads register the same alias, 3 inconsistent alias mappings observed by consumers. Protect all traversals, insertions and deletions on regulator_supply_alias_list with the existing regulator_list_mutex.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected a06ccd9c3785fa5550917ae036944f4e080b5749 - < e1587064137028e7edcca14fb766b68d27bec94baffected a06ccd9c3785fa5550917ae036944f4e080b5749 - < 9d041a7ba13f21adfac052eb3fda1df62f2166c1affected a06ccd9c3785fa5550917ae036944f4e080b5749 - < a63fbc07d1b34a9821ea3b31ff4e6456f9d0aa61affected a06ccd9c3785fa5550917ae036944f4e080b5749 - < 09811a83b214cc15521e0d818e43ae9043e9a28daffected a06ccd9c3785fa5550917ae036944f4e080b5749 - < a9864d42ebcdd394ebb864643b961b36e7b515be+3 more versions |
Linux | Linux | affected 3.13unaffected 0 - < 3.13unaffected 5.10.248 - <= 5.10.*unaffected 5.15.198 - <= 5.15.*unaffected 6.1.160 - <= 6.1.*+5 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now