CVE-2025-37836
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
PCI: Fix reference leak in pci_register_host_bridge()
If device_register() fails, call put_device() to give up the reference to avoid a memory leak, per the comment at device_register().
Found by code review.
[bhelgaas: squash Dan Carpenter's double free fix from https://lore.kernel.org/r/db806a6c-a91b-4e5a-a84b-6b7e01bdac85@stanley.mountain]
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 37d6a0a6f4700ad3ae7bbf8db38b4557e97b3fe4 < f4db1b2c9ae3d013733c302ee70cac943b7070c0 | affected |
| Linux | Linux | 37d6a0a6f4700ad3ae7bbf8db38b4557e97b3fe4 < 3297497ad2246eb9243849bfbbc57a0dea97d76e | affected |
| Linux | Linux | 37d6a0a6f4700ad3ae7bbf8db38b4557e97b3fe4 < b783478e0c53ffb4f04f25fb4e21ef7f482b05df | affected |
| Linux | Linux | 37d6a0a6f4700ad3ae7bbf8db38b4557e97b3fe4 < bd2a352a0d72575f1842d28c14c10089f0cfe1ae | affected |
| Linux | Linux | 37d6a0a6f4700ad3ae7bbf8db38b4557e97b3fe4 < 9707d0c932f41006a2701afc926b232b50e356b4 | affected |
| Linux | Linux | 37d6a0a6f4700ad3ae7bbf8db38b4557e97b3fe4 < bbba4c50a2d2a1d3f3bf31cc4b8280cb492bf2c7 | affected |
| Linux | Linux | 37d6a0a6f4700ad3ae7bbf8db38b4557e97b3fe4 < f9208aec86226524ec1cb68a09ac70e974ea6536 | affected |
| Linux | Linux | 37d6a0a6f4700ad3ae7bbf8db38b4557e97b3fe4 < 804443c1f27883926de94c849d91f5b7d7d696e9 | affected |
| Linux | Linux | 4.10 | affected |
| Linux | Linux | 0 < 4.10 | unaffected |
| Linux | Linux | 5.10.237 <= 5.10.* | unaffected |
| Linux | Linux | 5.15.181 <= 5.15.* | unaffected |
| Linux | Linux | 6.1.136 <= 6.1.* | unaffected |
| Linux | Linux | 6.6.89 <= 6.6.* | unaffected |
| Linux | Linux | 6.12.24 <= 6.12.* | unaffected |
| Linux | Linux | 6.13.12 <= 6.13.* | unaffected |
| Linux | Linux | 6.14.3 <= 6.14.* | unaffected |
| Linux | Linux | 6.15 <= * | unaffected |
Weaknesses
ADP Enrichment
CVE Program Container
Additional References
- https://lists.debian.org/debian-lts-announce/2025/05/msg00045.html
- https://lists.debian.org/debian-lts-announce/2025/05/msg00030.html
References
- https://git.kernel.org/stable/c/f4db1b2c9ae3d013733c302ee70cac943b7070c0
- https://git.kernel.org/stable/c/3297497ad2246eb9243849bfbbc57a0dea97d76e
- https://git.kernel.org/stable/c/b783478e0c53ffb4f04f25fb4e21ef7f482b05df
- https://git.kernel.org/stable/c/bd2a352a0d72575f1842d28c14c10089f0cfe1ae
- https://git.kernel.org/stable/c/9707d0c932f41006a2701afc926b232b50e356b4
- https://git.kernel.org/stable/c/bbba4c50a2d2a1d3f3bf31cc4b8280cb492bf2c7
- https://git.kernel.org/stable/c/f9208aec86226524ec1cb68a09ac70e974ea6536
- https://git.kernel.org/stable/c/804443c1f27883926de94c849d91f5b7d7d696e9
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.