In the Linux kernel, the following vulnerability has been resolved: crypto: atmel-sha204a - Fix potential UAF and memory leak in remove path Unregister the hwrng to prevent new ->read() calls and flush the Atmel I2C workqueue before teardown to prevent a potential UAF if a queued callback runs while the device is being removed. Drop the early return to ensure sysfs entries are removed and ->hwrng.priv is freed, preventing a memory leak.
| Product | Vendor | Version |
|---|---|---|
| Linux | Linux | 2008 for 32-bit Systems Service Pack 2 |
| Linux | Linux | 2008 for x64-based Systems Service Pack 2 |
| Linux | Linux | n/a |
| Linux | Linux | wl |