Vulnerability Database

314,342

Total vulnerabilities in the database

CVE-2025-68172

In the Linux kernel, the following vulnerability has been resolved:

crypto: aspeed - fix double free caused by devm

The clock obtained via devm_clk_get_enabled() is automatically managed by devres and will be disabled and freed on driver detach. Manually calling clk_disable_unprepare() in error path and remove function causes double free.

Remove the manual clock cleanup in both aspeed_acry_probe()'s error path and aspeed_acry_remove().

Published: Dec 16, 2025
Updated: Dec 17, 2025
CVE: CVE-2025-68172
Exploit:

No technical information available.

No CWE or OWASP classifications available.

Affected Software
References

No affected software listed.

https://git.kernel.org/stable/c/0dd6474ced33489076e6c0f3fe5077bf12e85b28
https://git.kernel.org/stable/c/29d0504077044a7e1ffbd09a6118018d5954a6e5
https://git.kernel.org/stable/c/3c9bf72cc1ced1297b235f9422d62b613a3fdae9
https://git.kernel.org/stable/c/e8407dfd267018f4647ffb061a9bd4a6d7ebacc6

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo