CVE-2025-40055

userclusterdisconnect() frees "conn->cc_private" which is "lc" but then the error handling frees "lc" a second time. Set "lc" to NULL on this path to avoid a double free.

Database specific

{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/40xxx/CVE-2025-40055.json"
}

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

c994c2ebdbbc391a42f177c8eb7882ebf3f142d8

Fixed

283333079d96c84baa91f0c62b5e0cbec246b7a2

Fixed

f992bc72f681c32a682d474a29c2135a64d4f4e5

Fixed

827c8efa0d1afe817b90f3618afff552e88348d2

Fixed

bfe011297ddd2d0cd64752978baaa0c04cd20573

Fixed

7e76fe9dfadbc00364d7523d5a109e9d3e4a7db2

Fixed

694d5b401036a614f8080085a9de6f86ff0742dc

Fixed

892f41e12c8689130d552a9eb2b77bafd26484ab

Fixed

8f45f089337d924db24397f55697cda0e6960516

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-40055.json"

Linux / Kernel

Package

Name: Kernel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

3.14.0

Fixed

5.4.301

Type: ECOSYSTEM
Events: Introduced

5.5.0

Fixed

5.10.246

Type: ECOSYSTEM
Events: Introduced

5.11.0

Fixed

5.15.195

Type: ECOSYSTEM
Events: Introduced

5.16.0

Fixed

6.1.156

Type: ECOSYSTEM
Events: Introduced

6.2.0

Fixed

6.6.112

Type: ECOSYSTEM
Events: Introduced

6.7.0

Fixed

6.12.53

Type: ECOSYSTEM
Events: Introduced

6.13.0

Fixed

6.17.3

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-40055.json"