CVE-2025-68754

Published: January 8, 2026Last modified: January 8, 2026

Description

In the Linux kernel, the following vulnerability has been resolved: rtc: amlogic-a4: fix double free caused by devm The clock obtained via devm_clk_get_enabled() is automatically managed by devres and will be disabled and freed on driver detach. Manually calling clk_disable_unprepare() in error path and remove function causes double free. Remove the redundant clk_disable_unprepare() calls from the probe error path and aml_rtc_remove(), allowing the devm framework to automatically manage the clock lifecycle.

Status

Product	Release	Package	Status
Alpaquita Linux	23 LTS	linux-lts	Not affected (6.1.33-r0)
	25 LTS	linux-lts	Not affected (6.6.89-r0)
	Stream	linux-lts	Not affected (6.1.33-r0)

References

https://git.kernel.org/stable/c/2e1c79299036614ac32b251d145fad5391f4bcab
https://git.kernel.org/stable/c/384150d7a5b60c1086790a8ee07b0629f906cca2
https://git.kernel.org/stable/c/9fed02c16488050cd4e33e045506336b216d7301