7.8

CVE-2025-38699

scsi: bfa: Double-free fix

In the Linux kernel, the following vulnerability has been resolved:

scsi: bfa: Double-free fix

When the bfad_im_probe() function fails during initialization, the memory
pointed to by bfad->im is freed without setting bfad->im to NULL.

Subsequently, during driver uninstallation, when the state machine enters
the bfad_sm_stopping state and calls the bfad_im_probe_undo() function,
it attempts to free the memory pointed to by bfad->im again, thereby
triggering a double-free vulnerability.

Set bfad->im to NULL if probing fails.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 2.6.33 < 5.4.297
LinuxLinux Kernel Version >= 5.5 < 5.10.241
LinuxLinux Kernel Version >= 5.11 < 5.15.190
LinuxLinux Kernel Version >= 5.16 < 6.1.149
LinuxLinux Kernel Version >= 6.2 < 6.6.103
LinuxLinux Kernel Version >= 6.7 < 6.12.43
LinuxLinux Kernel Version >= 6.13 < 6.15.11
LinuxLinux Kernel Version >= 6.16 < 6.16.2
LinuxLinux Kernel Version2.6.32 Update-
LinuxLinux Kernel Version2.6.32 Updaterc4
LinuxLinux Kernel Version2.6.32 Updaterc5
LinuxLinux Kernel Version2.6.32 Updaterc6
LinuxLinux Kernel Version2.6.32 Updaterc7
LinuxLinux Kernel Version2.6.32 Updaterc8
DebianDebian Linux Version11.0
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.17% 0.062
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.8 1.8 5.9
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CWE-415 Double Free

The product calls free() twice on the same memory address.

https://git.kernel.org/stable/c/684c92bb08a25ed3c0356bc7eb532ed5b19588dd
Patch
https://git.kernel.org/stable/c/9337c2affbaebe00b75fdf84ea0e2fcf93c140af
Patch
https://git.kernel.org/stable/c/ba024d92564580bb90ec367248ace8efe16ce815
Patch
https://git.kernel.org/stable/c/8e03dd9fadf76db5b9799583074a1a2a54f787f1
Patch
https://git.kernel.org/stable/c/39cfe2c83146aad956318f866d0ee471b7a61fa5
Patch
https://git.kernel.org/stable/c/13f613228cf3c96a038424cd97aa4d6aadc66294
Patch
https://git.kernel.org/stable/c/8456f862cb95bcc3a831e1ba87c0c17068be0f3f
Patch
https://git.kernel.org/stable/c/50d9bd48321038bd6e15af5a454bbcd180cf6f80
Patch
https://git.kernel.org/stable/c/add4c4850363d7c1b72e8fce9ccb21fdd2cf5dc9
Patch
https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html
Third Party Advisory
https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html
Third Party Advisory
https://cert-portal.siemens.com/productcert/html/ssa-032379.html