CVE-2025-40055

Oct. 28, 2025, 12:15 p.m.

None
No Score

Description

In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix double free in user_cluster_connect() user_cluster_disconnect() frees "conn->cc_private" which is "lc" but then the error handling frees "lc" a second time. Set "lc" to NULL on this path to avoid a double free.

Product(s) Impacted

Vendor Product Versions
Linux
  • Linux Kernel
  • *

Weaknesses

Common security weaknesses mapped to this vulnerability.

*CPE(s)

Affected systems and software identified for this CVE.

Type Vendor Product Version Update Edition Language Software Edition Target Software Target Hardware Other Information
o linux linux_kernel / / / / / / / /

References

https://git.kernel.org/stable/c/694d5b401036a614f8080085a9de6f86ff0742dc
https://git.kernel.org/stable/c/7e76fe9dfadbc00364d7523d5a109e9d3e4a7db2
https://git.kernel.org/stable/c/827c8efa0d1afe817b90f3618afff552e88348d2
https://git.kernel.org/stable/c/892f41e12c8689130d552a9eb2b77bafd26484ab
https://git.kernel.org/stable/c/8f45f089337d924db24397f55697cda0e6960516
https://git.kernel.org/stable/c/bfe011297ddd2d0cd64752978baaa0c04cd20573

Tags

416baaa9-dc9f-4396-8d5f-8c081fb06d67
2025-10-28
CVE-2025-40055

Timeline

Published: Oct. 28, 2025, 12:15 p.m.
Last Modified: Oct. 28, 2025, 12:15 p.m.

Status : Received

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

416baaa9-dc9f-4396-8d5f-8c081fb06d67

*Disclaimer: Some vulnerabilities do not have an associated CPE. To enhance the data, we use AI to infer CPEs based on CVE details. This is an automated process and might not always be accurate.