A vulnerability was found in the USB misc/ljca driver for Linux kernel resulted in a double free occurred during error handling when an auxiliary_device_add() encountered an error and invoked auxiliary_device_uninit(), the function ljca_auxdev_release erroneously called kfree() on auxdev->dev.platform_data, leading to double freeing of the parameter data.
Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.