CVE-2025-40253
- Source
- https://cve.org/CVERecord?id=CVE-2025-40253
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-40253.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2025-40253
- Downstream
- Related
- Published
- 2025-12-04T16:08:15.340Z
- Modified
- 2026-03-09T23:57:34.202206Z
- Summary
- s390/ctcm: Fix double-kfree
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
s390/ctcm: Fix double-kfree
The function 'mpcrcvdsweepreq(mpcginfo)' is called conditionally from function 'ctcmpcunpackskb'. It frees passed mpcginfo. After that a call to function 'kfree' in function 'ctcmpcunpack_skb' frees it again.
Remove 'kfree' call in function 'mpcrcvdsweep_req(mpcginfo)'.
Bug detected by the clang static analyzer.
- Database specific
{ "cna_assigner": "Linux", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/40xxx/CVE-2025-40253.json" }- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/06f1dd1de0d33dbfbd2e1fc9fc57d8895f730de2
- https://git.kernel.org/stable/c/3b177b2ded563df16f6d5920671ffcfe5915d472
- https://git.kernel.org/stable/c/43096dab8cc60fc39133205fd149a54d3acebea8
- https://git.kernel.org/stable/c/6bf8ccaabce8cebb6cb1f255c93d0acdfe95c17a
- https://git.kernel.org/stable/c/7616e2eee679746d526c7f5befd4eedb995935b5
- https://git.kernel.org/stable/c/7ff76f8dc6b550f8d16487bf3cebc278be720b5c
- https://git.kernel.org/stable/c/b9dbfb1b5699f9f1e4991f96741bdf9047147589
- https://git.kernel.org/stable/c/da02a1824884d6c84c5e5b5ac373b0c9e3288ec2
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/40xxx/CVE-2025-40253.json
- https://nvd.nist.gov/vuln/detail/CVE-2025-40253
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced467ddbbe7e749d558f13e640f50f546149c930b3Fixed06f1dd1de0d33dbfbd2e1fc9fc57d8895f730de2
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced4d3c6d741816539b57fa1110c3f765a8c176d7b4Fixed6bf8ccaabce8cebb6cb1f255c93d0acdfe95c17a
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced2bd57101c3ecf3f8c0da1d26c2b6ad511adc6d50Fixed7616e2eee679746d526c7f5befd4eedb995935b5
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced0c0b20587b9f25a2ad14db7f80ebe49bdf29920aFixed43096dab8cc60fc39133205fd149a54d3acebea8Fixed3b177b2ded563df16f6d5920671ffcfe5915d472Fixedb9dbfb1b5699f9f1e4991f96741bdf9047147589Fixed7ff76f8dc6b550f8d16487bf3cebc278be720b5cFixedda02a1824884d6c84c5e5b5ac373b0c9e3288ec2
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affected36933de59f67029e5739a98393891f9b94f27e0fLast affectedd886b4292a1c5b4facdb2dfdc31f0fecc71df898Last affected4c9ba0fed125deba8416b995b0c274b0804c0c24Last affectedea0053af5dab4d63a9c44563973fb2f3bfd9eb2b
Linux / Kernel
Package
- Name
- Kernel
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed5.4.302
- Type
- ECOSYSTEM
- Events
-
Introduced5.5.0Fixed5.10.247
- Type
- ECOSYSTEM
- Events
-
Introduced5.11.0Fixed5.15.197
- Type
- ECOSYSTEM
- Events
-
Introduced5.16.0Fixed6.1.159
- Type
- ECOSYSTEM
- Events
-
Introduced5.18.0Fixed6.6.118
- Type
- ECOSYSTEM
- Events
-
Introduced6.2.0Fixed6.12.60
- Type
- ECOSYSTEM
- Events
-
Introduced6.7.0Fixed6.17.10