CVE-2025-37817

Source
https://nvd.nist.gov/vuln/detail/CVE-2025-37817
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-37817.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2025-37817
Downstream
Related
Published
2025-05-08T07:15:52Z
Modified
2025-08-09T20:01:26Z
Summary
[none]
Details

In the Linux kernel, the following vulnerability has been resolved:

mcb: fix a double free bug in chameleonparsegdd()

In chameleonparsegdd(), if mcbdeviceregister() fails, 'mdev' would be released in mcbdeviceregister() via putdevice(). Thus, goto 'err' label and free 'mdev' again causes a double free. Just return if mcbdevice_register() fails.

References

Affected packages