5.5
CVE-2025-37980
- EPSS 0.15%
- Veröffentlicht 20.05.2025 16:58:22
- Zuletzt bearbeitet 11.04.2026 13:16:34
- CVE-Watchlists
- Unerledigt
block: fix resource leak in blk_register_queue() error path
In the Linux kernel, the following vulnerability has been resolved: block: fix resource leak in blk_register_queue() error path When registering a queue fails after blk_mq_sysfs_register() is successful but the function later encounters an error, we need to clean up the blk_mq_sysfs resources. Add the missing blk_mq_sysfs_unregister() call in the error path to properly clean up these resources and prevent a memory leak.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Linux ≫ Linux Kernel Version >= 3.13 < 6.6.88
Linux ≫ Linux Kernel Version >= 6.7 < 6.12.25
Linux ≫ Linux Kernel Version >= 6.13 < 6.14.4
Linux ≫ Linux Kernel Version6.15 Updaterc1
Linux ≫ Linux Kernel Version6.15 Updaterc2
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.15% | 0.045 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5.5 | 1.8 | 3.6 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
|
CWE-401 Missing Release of Memory after Effective Lifetime
The product does not sufficiently track and release allocated memory after it has been used, making the memory unavailable for reallocation and reuse.
https://git.kernel.org/stable/c/549cbbd14bbec12469ceb279b79c763c8a24224e
https://git.kernel.org/stable/c/41e43134ddda35949974be40520460a12dda3502
https://git.kernel.org/stable/c/55a7bb2708f7c7c5b366d4e40916113168a3824c
https://git.kernel.org/stable/c/40f2eb9b531475dd01b683fdaf61ca3cfd03a51e
https://git.kernel.org/stable/c/6af6d5feebf9423ab3b252831d1f52de31a8b5e0