CVE-2025-38390

EPSS 0.03%
Veröffentlicht 25.07.2025 13:15:28
Zuletzt bearbeitet 25.07.2025 15:29:19
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
Teams Watchlist Login
Unerledigt Login

In the Linux kernel, the following vulnerability has been resolved:

firmware: arm_ffa: Fix memory leak by freeing notifier callback node

Commit e0573444edbf ("firmware: arm_ffa: Add interfaces to request
notification callbacks") adds support for notifier callbacks by allocating
and inserting a callback node into a hashtable during registration of
notifiers. However, during unregistration, the code only removes the
node from the hashtable without freeing the associated memory, resulting
in a memory leak.

Resolve the memory leak issue by ensuring the allocated notifier callback
node is properly freed after it is removed from the hashtable entry.

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 6

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version < 076fa20b4f5737c34921dbb152f9efceaee571b2

Version e0573444edbf4ee7e3c191d3d08a4ccbd26628be

Status affected

Version < 938827c440564b2cf2f9b804d1fe81ce8267eded

Version e0573444edbf4ee7e3c191d3d08a4ccbd26628be

Status affected

Version < a833d31ad867103ba72a0b73f3606f4ab8601719

Version e0573444edbf4ee7e3c191d3d08a4ccbd26628be

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 6.7

Status affected

Version < 6.7

Version 0

Status unaffected

Version <= 6.12.*

Version 6.12.37

Status unaffected

Version <= 6.15.*

Version 6.15.6

Status unaffected

Version <= *

Version 6.16

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.03%	0.055

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

https://git.kernel.org/stable/c/076fa20b4f5737c34921dbb152f9efceaee571b2

https://git.kernel.org/stable/c/938827c440564b2cf2f9b804d1fe81ce8267eded

https://git.kernel.org/stable/c/a833d31ad867103ba72a0b73f3606f4ab8601719

https://nvd.nist.gov/vuln/detail/CVE-2025-38390

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-38390

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-38390

EUVD