s390/ism: add release function for struct device 漏洞信息(CVE-2025-21856)

一、漏洞 CVE-2025-21856 基础信息

美国国家漏洞数据库 NVD

漏洞标题

s390/ism: add release function for struct device

来源：美国国家漏洞数据库 NVD

漏洞描述信息

In the Linux kernel, the following vulnerability has been resolved: s390/ism: add release function for struct device According to device_release() in /drivers/base/core.c, a device without a release function is a broken device and must be fixed. The current code directly frees the device after calling device_add() without waiting for other kernel parts to release their references. Thus, a reference could still be held to a struct device, e.g., by sysfs, leading to potential use-after-free issues if a proper release function is not set.

来源：美国国家漏洞数据库 NVD

CVSS信息

N/A

来源：美国国家漏洞数据库 NVD

漏洞类别

N/A

来源：美国国家漏洞数据库 NVD

二、漏洞 CVE-2025-21856 的公开POC

#	POC 描述	源链接	神龙链接

三、漏洞 CVE-2025-21856 的情报信息

https://git.kernel.org/stable/c/940d15254d2216b585558bcf36312da50074e711
https://git.kernel.org/stable/c/0505ff2936f166405d81d0d454a81d9c14124344
https://git.kernel.org/stable/c/e26e8ac27351f457091459a0a355bacd06d5bb2b
https://git.kernel.org/stable/c/915e34d5ad35a6a9e56113f852ade4a730fb88f0
https://nvd.nist.gov/vuln/detail/CVE-2025-21856

一、 漏洞 CVE-2025-21856 基础信息

漏洞标题

漏洞描述信息

CVSS信息

漏洞类别

二、漏洞 CVE-2025-21856 的公开POC

三、漏洞 CVE-2025-21856 的情报信息

一、漏洞 CVE-2025-21856 基础信息