Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from improper resource cleanup in the probe error path, which could lead to the disclosure of warning messages...

PT-2025-37614

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A flaw exists in the Linux kernel’s serial driver related to the JSM module. Specifically, the probe function contains memory leaks due to an incorrect error handling path that does no...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an improperly handled error path that could lead to a resource leak...

PT-2025-37554

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A memory leak exists in the VXLAN implementation of the Linux kernel. The memory allocated by vxlan vnigroup init is not freed in the error path, leading to memory leaks. This can be...

PT-2025-37639

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The get function 0 function in the Linux kernel contains a potential PCI device reference count leak. The function calls pci get domain bus and slot, which increments the reference cou...

PT-2025-37613

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A reference count leak was resolved in the cxl calc capp routing function within the Linux kernel. The of get next parent function increments the reference count of a node pointer, and...

CVE-2025-39740

In the Linux kernel, the following vulnerability has been resolved: drm/xe/migrate: prevent potential UAF If we hit the error path, the previous fence if there is one has already been put prior to this, so doing a fencewait could lead to UAF. Tweak the flow to do to the put until after we do the...

CVE-2025-39740 drm/xe/migrate: prevent potential UAF

In the Linux kernel, the following vulnerability has been resolved: drm/xe/migrate: prevent potential UAF If we hit the error path, the previous fence if there is one has already been put prior to this, so doing a fencewait could lead to UAF. Tweak the flow to do to the put until after we do the...

CVE-2025-39740

The CVE-2025-39740 entry concerns a Linux kernel vulnerability in the DRM XE migration path. It describes a potential use-after-free (UAF) scenario if a fence_wait is performed after the previous fence has already been put(), on the error path. The fix changes the control flow so that the put() i...

PT-2025-37199

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contains a use-after-free UAF issue within the drm/xe/migrate component. Specifically, a flaw exists where a fence object could be freed prematurely, leading to a...

CVE-2025-39698

In the Linux kernel, the following vulnerability has been resolved: iouring/futex: ensure iofutexwait cleans up properly on failure The iofutexdata is allocated upfront and assigned to the iokiocb asyncdata field, but the request isn't marked with REQFASYNCDATA at that point. Those two should...

UBUNTU-CVE-2025-39698

In the Linux kernel, the following vulnerability has been resolved: iouring/futex: ensure iofutexwait cleans up properly on failure The iofutexdata is allocated upfront and assigned to the iokiocb asyncdata field, but the request isn't marked with REQFASYNCDATA at that point. Those two should...

CVE-2025-39698

CVE-2025-39698 concerns the Linux kernel io_uring/futex cleanup: io_futex_data is allocated upfront and wired into io_kiocb.async_data, but the request flag REQ_F_ASYNC_DATA may not be set at that time. On failure, the futex handler frees the data but may not clear async_data, so the data and fla...

CVE-2025-39698 io_uring/futex: ensure io_futex_wait() cleans up properly on failure

In the Linux kernel, the following vulnerability has been resolved: iouring/futex: ensure iofutexwait cleans up properly on failure The iofutexdata is allocated upfront and assigned to the iokiocb asyncdata field, but the request isn't marked with REQFASYNCDATA at that point. Those two should...

CVE-2025-39698 io_uring/futex: ensure io_futex_wait() cleans up properly on failure

In the Linux kernel, the following vulnerability has been resolved: iouring/futex: ensure iofutexwait cleans up properly on failure The iofutexdata is allocated upfront and assigned to the iokiocb asyncdata field, but the request isn't marked with REQFASYNCDATA at that point. Those two should...

drm/msm: Fix a fence leak in submit error path

...

nbd: fix uaf in nbd_genl_connect() error path

...

drm/msm: Fix another leak in the submit error path

...

udmabuf: fix memory leak on last export_udmabuf() error path

...

kernel: mmc: sdio: fix possible resource leaks in some error paths

In the Linux kernel, the following vulnerability has been resolved: mmc: sdio: fix possible resource leaks in some error paths If sdioaddfunc or sdioinitfunc fails, sdioremovefunc can not release the resources, because the sdio function is not presented in these two cases, it won't call ofnodeput...