CVE-2025-21745

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2025-21745
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-21745.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2025-21745
Downstream
Related
Published
2025-02-27T02:12:17.853Z
Modified
2025-11-28T02:35:24.823497Z
Summary
blk-cgroup: Fix class @block_class's subsystem refcount leakage
Details

In the Linux kernel, the following vulnerability has been resolved:

blk-cgroup: Fix class @block_class's subsystem refcount leakage

blkcgfillrootiostats() iterates over @blockclass's devices by classdeviter(init|next)(), but does not end iterating with classdeviterexit(), so causes the class's subsystem refcount leakage.

Fix by ending the iterating with classdeviter_exit().

Database specific 
{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/21xxx/CVE-2025-21745.json"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
ef45fe470e1e5410db4af87abc5d5055427945ac
Fixed
ffb494f1e7a047bd7a41b13796fcfb08fe5beafb
Fixed
38287f779b34dfe959b4b681e909f2d3d52b88be
Fixed
431b6ef2714be4d5babb802114987541a88b43b0
Fixed
993121481b5a87829f1e8163f47158b72679f309
Fixed
2ce09aabe009453d641a2ceb79e6461a2d4f3876
Fixed
67c7f213e052b1aa6caba4a7e25e303bc6997126
Fixed
d1248436cbef1f924c04255367ff4845ccd9025e

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
5.9.0
Fixed
5.10.235
Type
ECOSYSTEM
Events
Introduced
5.11.0
Fixed
5.15.179
Type
ECOSYSTEM
Events
Introduced
5.16.0
Fixed
6.1.129
Type
ECOSYSTEM
Events
Introduced
6.2.0
Fixed
6.6.78
Type
ECOSYSTEM
Events
Introduced
6.7.0
Fixed
6.12.14
Type
ECOSYSTEM
Events
Introduced
6.13.0
Fixed
6.13.3