Acknowledged
Created: Dec 16, 2025
Updated: Dec 18, 2025
Found In Version: 10.25.33.1
Severity: Standard
Applicable for: Wind River Linux LTS 25
Component/s: Kernel
In the Linux kernel, the following vulnerability has been resolved:[EOL][EOL]usbnet: Prevents free active kevent[EOL][EOL]The root cause of this issue are:[EOL]1. When probing the usbnet device, executing usbnet_link_change(dev, 0, 0);[EOL]put the kevent work in global workqueue. However, the kevent has not yet[EOL]been scheduled when the usbnet device is unregistered. Therefore, executing[EOL]free_netdev() results in the "free active object (kevent)" error reported[EOL]here.[EOL][EOL]2. Another factor is that when calling usbnet_disconnect()->unregister_netdev(),[EOL]if the usbnet device is up, ndo_stop() is executed to cancel the kevent.[EOL]However, because the device is not up, ndo_stop() is not executed.[EOL][EOL]The solution to this problem is to cancel the kevent before executing[EOL]free_netdev().
