CVE-2025-37909
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
net: lan743x: Fix memleak issue when GSO enabled
Always map the skb to the LS descriptor. Previously skb was
mapped to EXT descriptor when the number of fragments is zero with
GSO enabled. Mapping the skb to EXT descriptor prevents it from
being freed, leading to a memory leak
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 23f0703c125be490f70501b6b24ed5645775c56a < 093855ce90177488eac772de4eefbb909033ce5f | affected |
| Linux | Linux | 23f0703c125be490f70501b6b24ed5645775c56a < 6c65ee5ad632eb8dcd3a91cf5dc99b22535f44d9 | affected |
| Linux | Linux | 23f0703c125be490f70501b6b24ed5645775c56a < df993daa4c968b4b23078eacc248f6502ede8664 | affected |
| Linux | Linux | 23f0703c125be490f70501b6b24ed5645775c56a < a0e0efbabbbe6a1859bc31bf65237ce91e124b9b | affected |
| Linux | Linux | 23f0703c125be490f70501b6b24ed5645775c56a < dae1ce27ceaea7e1522025b15252e3cc52802622 | affected |
| Linux | Linux | 23f0703c125be490f70501b6b24ed5645775c56a < 189b05f189cac9fd233ef04d31cb5078c4d09c39 | affected |
| Linux | Linux | 23f0703c125be490f70501b6b24ed5645775c56a < f42c18e2f14c1b1fdd2a5250069a84bc854c398c | affected |
| Linux | Linux | 23f0703c125be490f70501b6b24ed5645775c56a < 2d52e2e38b85c8b7bc00dca55c2499f46f8c8198 | affected |
| Linux | Linux | 4.17 | affected |
| Linux | Linux | 0 < 4.17 | unaffected |
| Linux | Linux | 5.4.294 <= 5.4.* | unaffected |
| Linux | Linux | 5.10.238 <= 5.10.* | unaffected |
| Linux | Linux | 5.15.182 <= 5.15.* | unaffected |
| Linux | Linux | 6.1.138 <= 6.1.* | unaffected |
| Linux | Linux | 6.6.90 <= 6.6.* | unaffected |
| Linux | Linux | 6.12.28 <= 6.12.* | unaffected |
| Linux | Linux | 6.14.6 <= 6.14.* | unaffected |
| Linux | Linux | 6.15 <= * | unaffected |
Weaknesses
ADP Enrichment
CVE Program Container
Additional References
- https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html
- https://lists.debian.org/debian-lts-announce/2025/08/msg00010.html
References
- https://git.kernel.org/stable/c/093855ce90177488eac772de4eefbb909033ce5f
- https://git.kernel.org/stable/c/6c65ee5ad632eb8dcd3a91cf5dc99b22535f44d9
- https://git.kernel.org/stable/c/df993daa4c968b4b23078eacc248f6502ede8664
- https://git.kernel.org/stable/c/a0e0efbabbbe6a1859bc31bf65237ce91e124b9b
- https://git.kernel.org/stable/c/dae1ce27ceaea7e1522025b15252e3cc52802622
- https://git.kernel.org/stable/c/189b05f189cac9fd233ef04d31cb5078c4d09c39
- https://git.kernel.org/stable/c/f42c18e2f14c1b1fdd2a5250069a84bc854c398c
- https://git.kernel.org/stable/c/2d52e2e38b85c8b7bc00dca55c2499f46f8c8198
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.