Lucene search
K

14 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.1 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, and Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: ocfs2: A double-free operation was corrected in userclusterconnect. userclusterdisconnect frees "conn-ccprivate", which is actually "lc". However, the error handling frees "lc" again. Setting "lc" to NULL in this case can prevent...

5.6AI score0.00207EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/04/22 12:0 a.m.3 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-013813)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013813 advisory. In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix double free in userclusterconnect userclusterdisconnect frees conn-ccprivate which is ...

5.3AI score0.00207EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.3 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-011006)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-011006 advisory. In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix double free in userclusterconnect userclusterdisconnect frees conn-ccprivate which is ...

5.6AI score0.00207EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/17 12:0 a.m.3 views

Unity Linux 20.1050e / 20.1060e Security Update: kernel (UTSA-2026-007624)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007624 advisory. In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix double free in userclusterconnect userclusterdisconnect frees conn-ccprivate which is ...

5.6AI score0.00207EPSS
Exploits0References4
Microsoft CVE
Microsoft CVE
added 2025/10/29 1:2 a.m.4 views

ocfs2: fix double free in user_cluster_connect()

...

7AI score0.00207EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2025/10/29 12:25 a.m.2 views

SUSE CVE-2025-40055

In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix double free in userclusterconnect userclusterdisconnect frees "conn-ccprivate" which is "lc" but then the error handling frees "lc" a second time. Set "lc" to NULL on this path to avoid a double free...

5.5CVSS6.7AI score0.00207EPSS
Exploits0References21
OSV
OSV
added 2025/10/28 12:15 p.m.2 views

UBUNTU-CVE-2025-40055

In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix double free in userclusterconnect userclusterdisconnect frees "conn-ccprivate" which is "lc" but then the error handling frees "lc" a second time. Set "lc" to NULL on this path to avoid a double free...

5.7AI score0.00207EPSS
Exploits0References38
EUVD
EUVD
added 2025/10/28 11:48 a.m.3 views

EUVD-2025-36473

In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix double free in userclusterconnect userclusterdisconnect frees "conn-ccprivate" which is "lc" but then the error handling frees "lc" a second time. Set "lc" to NULL on this path to avoid a double free...

6.1AI score0.00207EPSS
Exploits0References7
CVE
CVE
added 2025/10/28 11:48 a.m.15 views

CVE-2025-40055

CVE-2025-40055 affects the Linux kernel OCFS2, describing a double-free in the path handling user_cluster_connect(). The root cause is that user_cluster_disconnect() frees the same memory as conn->cc_private (the lc object) and the error handling frees lc again, leading to a double-free. The d...

6.3AI score0.00207EPSS
Exploits0References8
Cvelist
Cvelist
added 2025/10/28 11:48 a.m.4 views

CVE-2025-40055 ocfs2: fix double free in user_cluster_connect()

In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix double free in userclusterconnect userclusterdisconnect frees "conn-ccprivate" which is "lc" but then the error handling frees "lc" a second time. Set "lc" to NULL on this path to avoid a double free...

0.00207EPSS
Exploits0References8
OSV
OSV
added 2025/10/28 11:48 a.m.5 views

CVE-2025-40055 ocfs2: fix double free in user_cluster_connect()

In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix double free in userclusterconnect userclusterdisconnect frees "conn-ccprivate" which is "lc" but then the error handling frees "lc" a second time. Set "lc" to NULL on this path to avoid a double free...

6.6AI score0.00207EPSS
Exploits0References11
Debian CVE
Debian CVE
added 2025/10/28 11:48 a.m.3 views

CVE-2025-40055

In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix double free in userclusterconnect userclusterdisconnect frees "conn-ccprivate" which is "lc" but then the error handling frees "lc" a second time. Set "lc" to NULL on this path to avoid a double free...

5.2AI score0.00207EPSS
Exploits0
CNNVD
CNNVD
added 2025/10/28 12:0 a.m.2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from a double release issue in the userclusterconnect function...

6.2AI score0.00207EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2025/09/23 12:0 a.m.11 views

PT-2025-44123

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the ocfs2 component related to a double free in the user cluster connect function. Specifically, user cluster disconnect frees a memory region, an...

4.6CVSS5.8AI score0.00207EPSS
Exploits0
Rows per page
Query Builder